uumas/ansible-matrix
1
0
Fork 0
Code Issues 7 Pull Requests Projects Releases Wiki Activity
Files
0b16875fd2a9276f64ad842fb435110ac184993c
ansible-matrix/roles/nginx/templates/conf/ssl-headers.conf.j2
uumas 70a4684f51 add nginx role
2023-04-19 00:24:44 +03:00

13 lines
681 B
Django/Jinja
Raw Blame History

# {{ ansible_managed }}
# Strict Transport Security (HSTS), Tell browsers to use only https (adding includeSubDomains would also force subdomains to use HSTS)
add_header Strict-Transport-Security "max-age=15552000; preload" always;
# Expect Certificate Transparency and -Stapling, Security measures for checking HTTPS-certificate validity/revocation
add_header Expect-CT 'enforce; max-age=86400;' always;
add_header Expect-Staple 'max-age=86400; preload' always;
add_header Referrer-Policy "no-referrer-when-downgrade" always;
add_header X-Content-Type-Options "nosniff" always;
add_header X-Xss-Protection "1; mode=block" always;
add_header X-Frame-Options "SAMEORIGIN" always;
Reference in New Issue View Git Blame Copy Permalink