fi/nix-infra
1
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Change Content-Security-Policy "frame-ancestors" from "none" to "self"

Browse source 
Fixes downloads in element-web
This commit is contained in:
yuri 2023-09-28 04:58:38 +02:00
commit ffa09f900b
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
config/hosts/web-public-2/virtualHosts/element.nekover.se.nix
View file

@ -72,7 +72,7 @@ in
add_header X-Frame-Options SAMEORIGIN;
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header Content-Security-Policy "frame-ancestors 'none'";
add_header Content-Security-Policy "frame-ancestors 'self'";
add_header Strict-Transport-Security "max-age=63072000" always;