From a1c1ac280aaac41ec4cfde94950f5d26ddc501e6 Mon Sep 17 00:00:00 2001 From: Asif Bacchus Date: Thu, 7 Jan 2021 15:03:24 -0700 Subject: [PATCH] struct(MOVE): move security headers to snippets from configs --- {config => snippets}/headersSecurity.conf | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) rename {config => snippets}/headersSecurity.conf (82%) diff --git a/config/headersSecurity.conf b/snippets/headersSecurity.conf similarity index 82% rename from config/headersSecurity.conf rename to snippets/headersSecurity.conf index b42e68b..834a875 100644 --- a/config/headersSecurity.conf +++ b/snippets/headersSecurity.conf @@ -1,10 +1,10 @@ add_header Feature-Policy "geolocation 'self'"; -add_header Referrer-Policy "strict-origin" always; +add_header Referrer-Policy "same-origin" always; add_header X-Content-Type-Options "nosniff" always; add_header X-Download-Options noopen; -add_header X-Frame-Options DENY; +add_header X-Frame-Options SAMEORIGIN; add_header X-Permitted-Cross-Domain-Policies none; add_header X-UA-Compatible "IE=edge"; add_header X-XSS-Protection "1; mode=block" always;