From 54261953e711e67e4ee28f788ea35bcab0e86654 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Wed, 30 Mar 2016 21:45:43 +0300
Subject: Set HTTP security headers.

See https://securityheaders.io .
---
 roles/wiki/files/etc/nginx/sites-available/website | 2 ++
 roles/wiki/files/etc/nginx/sites-available/wiki    | 2 ++
 2 files changed, 4 insertions(+)

(limited to 'roles/wiki')

diff --git a/roles/wiki/files/etc/nginx/sites-available/website b/roles/wiki/files/etc/nginx/sites-available/website
index 5d382ec..43cdd05 100644
--- a/roles/wiki/files/etc/nginx/sites-available/website
+++ b/roles/wiki/files/etc/nginx/sites-available/website
@@ -6,6 +6,7 @@ server {
     server_name www.fripost.org;
 
     include snippets/acme-challenge.conf;
+    include snippets/headers.conf;
 
     access_log /var/log/nginx/www.access.log;
     error_log  /var/log/nginx/www.error.log info;
@@ -24,6 +25,7 @@ server {
     server_name www.fripost.org;
 
     include snippets/ssl.conf;
+    include snippets/headers.conf;
     ssl_certificate     /etc/nginx/ssl/www.fripost.org.pem;
     ssl_certificate_key /etc/nginx/ssl/www.fripost.org.key;
 
diff --git a/roles/wiki/files/etc/nginx/sites-available/wiki b/roles/wiki/files/etc/nginx/sites-available/wiki
index d61ff28..d2be8db 100644
--- a/roles/wiki/files/etc/nginx/sites-available/wiki
+++ b/roles/wiki/files/etc/nginx/sites-available/wiki
@@ -5,6 +5,7 @@ server {
     server_name wiki.fripost.org;
 
     include snippets/acme-challenge.conf;
+    include snippets/headers.conf;
 
     access_log /var/log/nginx/wiki.access.log;
     error_log  /var/log/nginx/wiki.error.log info;
@@ -23,6 +24,7 @@ server {
     server_name wiki.fripost.org;
 
     include snippets/ssl.conf;
+    include snippets/headers.conf;
     ssl_certificate     /etc/nginx/ssl/www.fripost.org.pem;
     ssl_certificate_key /etc/nginx/ssl/www.fripost.org.key;
 
-- 
cgit v1.2.3