view modules/website/templates/https_core_conf.erb @ 377:18765f598232

Add Enchant module for webmail spell checking Roundcube ran a server. They don't now, so we need a local lib.
author IBBoard <dev@ibboard.co.uk>
date Sat, 25 Sep 2021 16:05:55 +0100
parents c68883dde00b
children
line wrap: on
line source

Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"
<%- if @csp -%>
Header always set Content-Security-Policy "upgrade-insecure-requests; <%= @csp_string %>"
<%- end -%>
<%- if @csp_report -%>
Header always set Content-Security-Policy-Report-Only "<%= @csp_report_string %>"
<%- end -%>
Header always set X-Xss-Protection "1; mode=block"
Header always set X-Content-Type-Options "nosniff"
Header always set X-Frame-Options "SAMEORIGIN"
Header always set Feature-Policy "interest-cohort 'none'; accelerometer 'none'; autoplay 'none'; battery 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none';"
Header always set Permissions-Policy "interest-cohort=(); accelerometer=(); autoplay=(); battery=(); camera=(); geolocation=(); gyroscope=(); magnetometer=(); microphone=(); payment=(); usb=();"

<If "%{HTTP_HOST} != '<%= @primary_name %>'">
	Redirect permanent "/" "https://<%= @primary_name %>/"
</If>