fi/nix-infra
1
1
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Change Content-Security-Policy "frame-ancestors" from "none" to "self"

Browse source 
Fixes downloads in element-web
This commit is contained in:
fi 2023-09-28 04:58:38 +02:00
parent e8427dc81d
commit 35119a2a8e
Signed by: fi
SSH key fingerprint: SHA256:d+6fQoDPMbSFK95zRVflRKZLRKF4cPSQb7VIxYkhFsA
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
config/hosts/web-public-2/virtualHosts/element.nekover.se.nix
View file

@ -72,7 +72,7 @@ in
add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header Content-Security-Policy "frame-ancestors 'none'";
add_header Content-Security-Policy "frame-ancestors 'self'";
add_header Strict-Transport-Security "max-age=63072000" always;