toufy/adonis
toufy/adonis
1
Fork 0
Code Activity Actions

nginx set x-frame-options to sameorigin

Browse source
This commit is contained in:
toufic ar 2026-03-10 10:08:00 +02:00
parent 295f9d4696
commit 0bdc2fc68c
Signed by: toufic ar
SSH key fingerprint: SHA256:/NaO5I1nG3gYKzrzSiTYIdRyaIYxDWfr1U+d+yfJ/4k
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
config/http/default.nix
View file

@ -38,7 +38,7 @@ in {
more_set_headers 'Strict-Transport-Security: $hsts_header'; more_set_headers 'Strict-Transport-Security: $hsts_header';
more_set_headers 'Content-Security-Policy: upgrade-insecure-requests'; more_set_headers 'Content-Security-Policy: upgrade-insecure-requests';
more_set_headers 'Referrer-Policy: origin-when-cross-origin'; more_set_headers 'Referrer-Policy: origin-when-cross-origin';
more_set_headers 'X-Frame-Options: DENY'; more_set_headers 'X-Frame-Options: SAMEORIGIN';
more_set_headers 'X-Content-Type-Options: nosniff'; more_set_headers 'X-Content-Type-Options: nosniff';
more_set_headers 'X-XSS-Protection: 0'; more_set_headers 'X-XSS-Protection: 0';
''; '';