Infinidoge/universe
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Infini-DL360/web: adjust content type options and HSTS headers

Browse source
This commit is contained in:
Infinidoge 2025-05-21 00:29:45 -04:00
parent 8f8364e258
commit 43d993f864
Signed by: Infinidoge
SSH key fingerprint: SHA256:EMoPe5e2dO0gEvtBb2xkZTz5dkyL0rBmuiGTKG5s96E
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
hosts/Infini-DL360/web.nix
View file

@ -50,7 +50,7 @@ let
location ~ "/\..+" { deny all; } location ~ "/\..+" { deny all; }
add_header Content-Security-Policy "${cspString}"; add_header Content-Security-Policy "${cspString}";
add_header X-Content-Type-Options "nosniff;"; add_header X-Content-Type-Options "nosniff";
''; '';
mkRedirect = to: ssl-optional // { globalRedirect = to; }; mkRedirect = to: ssl-optional // { globalRedirect = to; };
@ -73,7 +73,7 @@ in
extraConfig = extraConfig =
websiteConfig websiteConfig
+ '' + ''
add_header Strict-Transport-Security "max-age=2592000;"; add_header Strict-Transport-Security "max-age=15768000;";
''; '';
}; };
}; };