diff options
Diffstat (limited to 'roles/common-web/files')
-rw-r--r-- | roles/common-web/files/etc/nginx/snippets/headers.conf | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/roles/common-web/files/etc/nginx/snippets/headers.conf b/roles/common-web/files/etc/nginx/snippets/headers.conf index 60e5ace..798a151 100644 --- a/roles/common-web/files/etc/nginx/snippets/headers.conf +++ b/roles/common-web/files/etc/nginx/snippets/headers.conf @@ -1,4 +1,5 @@ # https://securityheaders.io/ +add_header Referrer-Policy no-referrer; add_header X-Frame-Options "SAMEORIGIN"; add_header X-Content-Type-Options nosniff; add_header X-XSS-Protection "1; mode=block"; |