add security headers to netlify frontend

This commit is contained in:
Tao Bojlén 2020-05-19 15:19:01 +00:00
parent 94034ee538
commit 3db98cbfa0
1 changed files with 11 additions and 0 deletions

View File

@ -2,6 +2,9 @@
base = "frontend/"
publish = "frontend/build/"
[build.environment]
INLINE_RUNTIME_CHUNK = "false"
[context.develop.environment]
REACT_APP_STAGING = "true"
@ -16,3 +19,11 @@
to = "/index.html"
status = 200
[[headers]]
for = "/*"
[headers.values]
X-Content-Type-Options = "nosniff"
X-Frame-Options = "DENY"
X-XSS-Protection = "1"
Content-Security-Policy = "default-src 'self' https://*.fediverse.space; style-src 'self' 'unsafe-inline'"