add security headers to netlify frontend

2020-05-18 18:30:40 +01:00 · 2020-05-18 18:30:40 +01:00 · 5b57cf4afc
parent 94034ee538
commit 5b57cf4afc
1 changed files with 8 additions and 0 deletions
--- a/netlify.toml
+++ b/netlify.toml
@ -16,3 +16,11 @@
  to = "/index.html"
  status = 200

+[[headers]]
+  for = "/*"
+  [headers.values]
+  X-Content-Type-Options = "nosniff"
+  X-Frame-Options = "DENY"
+  X-XSS-Protection = "1"
+  Content-Security-Policy = "default-src 'self' https://*.fediverse.space"
+