msfjarvis/server-config
1
Fork 0
mirror of https://github.com/msfjarvis/server-config synced 2025-08-14 08:17:01 +05:30
Code Issues Projects Releases Packages Wiki Activity Actions

Caddyfile: Setup CSP reporting

Browse source 
Signed-off-by: Harsh Shandilya <msfjarvis@gmail.com>
This commit is contained in:
Harsh Shandilya 2020-01-30 19:57:21 +05:30
parent 15bd2591e2
commit 137cf4cca5
No known key found for this signature in database
GPG key ID: C2E74282C2133D62
1 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
Caddyfile
View file

@ -7,6 +7,9 @@
dns cloudflare
}
header / {
Content-Security-Policy "
report-uri https://msfjarvis.report-uri.com/r/d/csp/reportOnly;
"
# Security related changes stolen from https://github.com/searx/searx-docker/blob/master/Caddyfile
Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
X-XSS-Protection "1; mode=block"