michi.vonah/website-v3
1
0
Fork 0
mirror of https://github.com/michivonah/website-v3.git synced 2025-12-22 21:36:28 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

add security headers

Browse source
This commit is contained in:
Michi 2025-04-05 22:06:49 +02:00
parent e39b216212
commit c5bc1d3735
1 changed files with 12 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

12
_headers Normal file
View file

@ -0,0 +1,12 @@
/
Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' cdn.michivonah.ch blog.michivonah.ch i.ytimg.com; font-src 'self'; upgrade-insecure-requests
Permissions-Policy: accelerometer=(), autoplay=(), display-capture=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
Referrer-Policy: strict-origin
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Access-Control-Allow-Origin: https://michivonah.ch