michi.vonah/website-v3
1
0
Fork 0
mirror of https://github.com/michivonah/website-v3.git synced 2025-12-22 21:36:28 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

add connect-src to security headers

Browse source
This commit is contained in:
Michi 2025-04-05 22:16:04 +02:00
parent 6f572d3a23
commit 6149ef44e8
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
static/_headers
View file

@ -1,5 +1,5 @@
/ /
Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' cdn.michivonah.ch blog.michivonah.ch i.ytimg.com; font-src 'self'; upgrade-insecure-requests Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' cdn.michivonah.ch blog.michivonah.ch i.ytimg.com; font-src 'self'; connect-src 'self' api.michivonah.ch; upgrade-insecure-requests
Permissions-Policy: accelerometer=(), autoplay=(), display-capture=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=() Permissions-Policy: accelerometer=(), autoplay=(), display-capture=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
Referrer-Policy: strict-origin Referrer-Policy: strict-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains Strict-Transport-Security: max-age=31536000; includeSubDomains