forked from pub-solar/infra
Merge pull request 'website: add security.txt' (#122) from feat/security-txt into main
Reviewed-on: pub-solar/infra#122 Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
This commit is contained in:
commit
37ebcb3669
|
@ -1,6 +1,4 @@
|
||||||
{ ... }:
|
{ lib, ... }: {
|
||||||
|
|
||||||
{
|
|
||||||
systemd.tmpfiles.rules = [
|
systemd.tmpfiles.rules = [
|
||||||
"d '/srv/www/pub.solar' 0750 hakkonaut hakkonaut - -"
|
"d '/srv/www/pub.solar' 0750 hakkonaut hakkonaut - -"
|
||||||
];
|
];
|
||||||
|
@ -54,6 +52,22 @@
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
|
||||||
|
# Responsible disclosure information https://securitytxt.org/
|
||||||
|
"/.well-known/security.txt" = let
|
||||||
|
securityTXT = lib.lists.foldr (a: b: a + "\n" + b) "" [
|
||||||
|
"Contact: mailto:admins@pub.solar"
|
||||||
|
"Expires: 2025-01-04T23:00:00.000Z"
|
||||||
|
"Encryption: https://keys.openpgp.org/vks/v1/by-fingerprint/8A8987ADE3736C8CA2EB315A9B809EBBDD62BAE3"
|
||||||
|
"Preferred-Languages: en,de"
|
||||||
|
"Canonical: https://pub.solar/.well-known/security.txt"
|
||||||
|
];
|
||||||
|
in {
|
||||||
|
extraConfig = ''
|
||||||
|
add_header Content-Type text/plain;
|
||||||
|
return 200 '${securityTXT}';
|
||||||
|
'';
|
||||||
|
};
|
||||||
|
|
||||||
"/satzung" = {
|
"/satzung" = {
|
||||||
extraConfig = ''
|
extraConfig = ''
|
||||||
return 302 https://cloud.pub.solar/s/iaKqiW25QJpHPYs;
|
return 302 https://cloud.pub.solar/s/iaKqiW25QJpHPYs;
|
||||||
|
|
Loading…
Reference in a new issue