pub-solar/matrix-docker-ansible-deploy
5
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Content-Security-Policy For Element Web

Browse source 
https://github.com/vector-im/element-web#configuration-best-practices
This commit is contained in:
sakkiii 2021-06-18 23:27:23 +05:30 committed by GitHub
parent 3dd32d2512
commit 0217644b48
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
roles/matrix-nginx-proxy/templates/nginx/conf.d/matrix-client-element.conf.j2
View file

@ -12,6 +12,7 @@
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "{{ matrix_nginx_proxy_xss_protection }}";
add_header X-Frame-Options SAMEORIGIN;
add_header Content-Security-Policy "frame-ancestors 'none'";
{% if matrix_nginx_proxy_floc_optout_enabled %}
add_header Permissions-Policy interest-cohort=() always;