add security headers to netlify frontend
This commit is contained in:
Tao Bojlén
parent
94034ee538
commit
3db98cbfa0
11
netlify.toml
11
netlify.toml
|
|
@ -2,6 +2,9 @@
|
||||||
base = "frontend/"
|
base = "frontend/"
|
||||||
publish = "frontend/build/"
|
publish = "frontend/build/"
|
||||||
|
|
||||||
|
[build.environment]
|
||||||
|
INLINE_RUNTIME_CHUNK = "false"
|
||||||
|
|
||||||
[context.develop.environment]
|
[context.develop.environment]
|
||||||
REACT_APP_STAGING = "true"
|
REACT_APP_STAGING = "true"
|
||||||
|
|
||||||
|
|
@ -16,3 +19,11 @@
|
||||||
to = "/index.html"
|
to = "/index.html"
|
||||||
status = 200
|
status = 200
|
||||||
|
|
||||||
|
[[headers]]
|
||||||
|
for = "/*"
|
||||||
|
[headers.values]
|
||||||
|
X-Content-Type-Options = "nosniff"
|
||||||
|
X-Frame-Options = "DENY"
|
||||||
|
X-XSS-Protection = "1"
|
||||||
|
Content-Security-Policy = "default-src 'self' https://*.fediverse.space; style-src 'self' 'unsafe-inline'"
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue