nginx: Add Expires: HTTP headers.

author: Guilhem Moulin <guilhem@fripost.org> 2020-05-17 20:24:09 +0200
committer: Guilhem Moulin <guilhem@fripost.org> 2020-05-17 20:34:42 +0200
commit: 3c7c834a37802e5ca5d93a4b4a91dde3264d9f5d (patch)
tree: 07abe3c01bb29505ceab94b7bdb587c1d3bd09ba /roles/webmail
parent: a16b003a9bf101234ca988b6e43466a3d6b99bc7 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/roles/webmail/files/etc/nginx/sites-available/roundcube b/roles/webmail/files/etc/nginx/sites-available/roundcube
index 6bd4dd1..9cc20ad 100644
--- a/roles/webmail/files/etc/nginx/sites-available/roundcube
+++ b/roles/webmail/files/etc/nginx/sites-available/roundcube
@@ -51,24 +51,25 @@ server {
         log_not_found off;
         access_log    off;
     }
 
     access_log /var/log/nginx/roundcube.access.log;
     error_log  /var/log/nginx/roundcube.error.log info;
 
     client_max_body_size 64m;
     location = / { index index.php; }
     location = /index.php {
         # TODO enable gzip for Roundcube >=1.5: it's immune to BREACH attacks once
         # $config['session_samesite'] is set to 'Strict', see
         #   https://github.com/roundcube/roundcubemail/pull/6772
         #   https://www.sjoerdlangkemper.nl/2016/11/07/current-state-of-breach-attack/#same-site-cookies
         gzip off;
         include snippets/fastcgi-php-ssl.conf;
         fastcgi_pass unix:/var/run/php/php7.3-fpm@roundcube.sock;
     }
 
     location ~ "^/(?:plugins|program/js|program/resources|skins)(?:/[[:alnum:]][[:alnum:]\-\._]*)+\.(?:css|eot|gif|html|ico|jpg|js|pdf|png|svg|tiff?|ttf|webp|woff2?)$" {
+        expires 30d;
         try_files $uri =404;
     }
     location / { internal; }
 }
author	Guilhem Moulin <guilhem@fripost.org>	2020-05-17 20:24:09 +0200
committer	Guilhem Moulin <guilhem@fripost.org>	2020-05-17 20:34:42 +0200
commit	3c7c834a37802e5ca5d93a4b4a91dde3264d9f5d (patch)
tree	07abe3c01bb29505ceab94b7bdb587c1d3bd09ba /roles/webmail
parent	a16b003a9bf101234ca988b6e43466a3d6b99bc7 (diff)