mirror of
				https://github.com/spantaleev/matrix-docker-ansible-deploy.git
				synced 2025-10-25 09:33:25 +00:00 
			
		
		
		
	matrix_nginx_proxy_xss_protection
This commit is contained in:
		| @@ -9,6 +9,14 @@ | ||||
| 	{% if matrix_nginx_proxy_floc_optout_enabled %} | ||||
| 		add_header Permissions-Policy interest-cohort=() always; | ||||
| 	{% endif %} | ||||
| 	 | ||||
| 	{% if matrix_nginx_proxy_hsts_preload_enable %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	 | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
|  | ||||
| 	{% for configuration_block in matrix_nginx_proxy_proxy_domain_additional_server_configuration_blocks %} | ||||
| 		{{- configuration_block }} | ||||
|   | ||||
| @@ -8,7 +8,7 @@ | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	add_header X-XSS-Protection "1; mode=block";; | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
| 	add_header X-Content-Type-Options nosniff; | ||||
|  | ||||
| {% for configuration_block in matrix_nginx_proxy_proxy_bot_go_neb_additional_server_configuration_blocks %} | ||||
|   | ||||
| @@ -10,10 +10,8 @@ | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	add_header X-Content-Type-Options nosniff; | ||||
| 	add_header X-XSS-Protection "1; mode=block"; | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
| 	add_header X-Frame-Options SAMEORIGIN; | ||||
| 	add_header Content-Security-Policy "frame-ancestors 'none'; require-trusted-types-for 'script'; base-uri 'self'"; | ||||
| 	add_header Referrer-Policy "strict-origin-when-cross-origin"; | ||||
|  | ||||
| 	{% if matrix_nginx_proxy_floc_optout_enabled %} | ||||
| 		add_header Permissions-Policy interest-cohort=() always; | ||||
|   | ||||
| @@ -8,7 +8,7 @@ | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	add_header X-XSS-Protection "1; mode=block"; | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
| 	add_header X-Content-Type-Options nosniff; | ||||
| 	{% if matrix_nginx_proxy_floc_optout_enabled %} | ||||
| 		add_header Permissions-Policy interest-cohort=() always; | ||||
|   | ||||
| @@ -20,6 +20,14 @@ | ||||
| 	{% if matrix_nginx_proxy_floc_optout_enabled %} | ||||
| 		add_header Permissions-Policy interest-cohort=() always; | ||||
| 	{% endif %} | ||||
| 	 | ||||
| 	{% if matrix_nginx_proxy_hsts_preload_enable %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	 | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
|  | ||||
| 	location /.well-known/matrix { | ||||
| 		root {{ matrix_static_files_base_path }}; | ||||
|   | ||||
| @@ -8,7 +8,7 @@ | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	add_header X-XSS-Protection "1; mode=block"; | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
| 	add_header X-Content-Type-Options nosniff; | ||||
| 	{% if matrix_nginx_proxy_floc_optout_enabled %} | ||||
| 		add_header Permissions-Policy interest-cohort=() always; | ||||
|   | ||||
| @@ -4,6 +4,14 @@ | ||||
| 	{% if matrix_nginx_proxy_floc_optout_enabled %} | ||||
| 		add_header Permissions-Policy interest-cohort=() always; | ||||
| 	{% endif %} | ||||
| 	 | ||||
| 	{% if matrix_nginx_proxy_hsts_preload_enable %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif  | ||||
| 	 | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
|  | ||||
| 	{% for configuration_block in matrix_nginx_proxy_proxy_riot_additional_server_configuration_blocks %} | ||||
| 		{{- configuration_block }} | ||||
|   | ||||
| @@ -8,7 +8,7 @@ | ||||
| 	{% else %} | ||||
| 		add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always; | ||||
| 	{% endif %} | ||||
| 	add_header X-XSS-Protection "1; mode=block"; | ||||
| 	add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}"; | ||||
| 	add_header X-Content-Type-Options nosniff; | ||||
| 	add_header X-Frame-Options DENY; | ||||
|  | ||||
|   | ||||
		Reference in New Issue
	
	Block a user