rav4s
/
NginX-Config-Files
mirror of https://github.com/Rav4s/NginX-Config-Files
1
1
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Added permissions policy to opt-out of Google FLoC (Federated Learning of Cohorts)

main
Ravi Shah 5 years ago
parent
6c8a494f4d
commit
7308dbdae1
2 changed files with 2 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 1
      reverse-proxy.conf
  2. 1
      subdomain-proxy.conf

1
reverse-proxy.conf
View File

@ -72,6 +72,7 @@ server {
# Set the security headers # Set the security headers
add-header Permissions-Policy "interest-cohort=()"; # Don't allow Google FLoC
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"; #HSTS add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"; #HSTS
add_header X-Frame-Options DENY; #Prevents clickjacking add_header X-Frame-Options DENY; #Prevents clickjacking
add_header X-Content-Type-Options nosniff; #Prevents mime sniffing add_header X-Content-Type-Options nosniff; #Prevents mime sniffing

1
subdomain-proxy.conf
View File

@ -46,6 +46,7 @@ server {
# Set the security headers # Set the security headers
add-header Permissions-Policy "interest-cohort=()"; # Don't allow Google FLoC
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"; #HSTS add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"; #HSTS
add_header X-Frame-Options DENY; #Prevents clickjacking add_header X-Frame-Options DENY; #Prevents clickjacking
add_header X-Content-Type-Options nosniff; #Prevents mime sniffing add_header X-Content-Type-Options nosniff; #Prevents mime sniffing

Write Preview
Loading…
Cancel
Save