Mercurial > repos > other > Puppet
view modules/website/templates/https_core_conf.erb @ 372:94f34831132d
Opt out of FLOC via headers
https://scotthelme.co.uk/what-the-floc/
author | IBBoard <dev@ibboard.co.uk> |
---|---|
date | Sat, 24 Apr 2021 11:12:33 +0100 |
parents | b2acbea872e7 |
children | c68883dde00b |
line wrap: on
line source
Header always set Strict-Transport-Security "max-age=16070400; includeSubDomains" <%- if @csp -%> Header always set Content-Security-Policy "upgrade-insecure-requests; <%= @csp_string %>" <%- end -%> <%- if @csp_report -%> Header always set Content-Security-Policy-Report-Only "<%= @csp_report_string %>" <%- end -%> Header always set X-Xss-Protection "1; mode=block" Header always set X-Content-Type-Options "nosniff" Header always set X-Frame-Options "SAMEORIGIN" Header always set Feature-Policy "interest-cohort 'none'; accelerometer 'none'; autoplay 'none'; battery 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none';" Header always set Permissions-Policy "interest-cohort=(); accelerometer=(); autoplay=(); battery=(); camera=(); geolocation=(); gyroscope=(); magnetometer=(); microphone=(); payment=(); usb=();" <If "%{HTTP_HOST} != '<%= @primary_name %>'"> Redirect permanent "/" "https://<%= @primary_name %>/" </If>