mirror of
https://github.com/bitwarden/server.git
synced 2024-12-22 16:57:36 +01:00
reassign security headers
This commit is contained in:
parent
9eae04a9c7
commit
b2d63b2383
@ -140,9 +140,6 @@ http {
|
||||
map $uri $fido_content_type {
|
||||
default "application/fido.trusted-apps+json";
|
||||
}
|
||||
|
||||
# Security headers
|
||||
include security-headers.conf;
|
||||
|
||||
# Include files in the sites-enabled folder. server{} configuration files should be
|
||||
# placed in the sites-available folder, and then the configuration should be enabled
|
||||
|
@ -46,42 +46,33 @@ server {
|
||||
|
||||
include /etc/nginx/security-headers-ssl.conf;
|
||||
{{/if}}
|
||||
include /etc/nginx/security-headers.conf;
|
||||
|
||||
location / {
|
||||
proxy_pass http://web:5000/;
|
||||
include /etc/nginx/security-headers.conf;
|
||||
{{#if Ssl}}
|
||||
include /etc/nginx/security-headers-ssl.conf;
|
||||
{{/if}}
|
||||
include /etc/nginx/security-headers.conf;
|
||||
add_header Content-Security-Policy "{{{ContentSecurityPolicy}}}";
|
||||
}
|
||||
|
||||
location = /app-id.json {
|
||||
proxy_pass http://web:5000/app-id.json;
|
||||
include /etc/nginx/security-headers.conf;
|
||||
{{#if Ssl}}
|
||||
include /etc/nginx/security-headers-ssl.conf;
|
||||
{{/if}}
|
||||
include /etc/nginx/security-headers.conf;
|
||||
proxy_hide_header Content-Type;
|
||||
add_header Content-Type $fido_content_type;
|
||||
}
|
||||
|
||||
location = /duo-connector.html {
|
||||
proxy_pass http://web:5000/duo-connector.html;
|
||||
include /etc/nginx/security-headers.conf;
|
||||
{{#if Ssl}}
|
||||
include /etc/nginx/security-headers-ssl.conf;
|
||||
{{/if}}
|
||||
add_header X-Frame-Options "";
|
||||
}
|
||||
|
||||
location = /u2f-connector.html {
|
||||
proxy_pass http://web:5000/u2f-connector.html;
|
||||
include /etc/nginx/security-headers.conf;
|
||||
{{#if Ssl}}
|
||||
include /etc/nginx/security-headers-ssl.conf;
|
||||
{{/if}}
|
||||
add_header X-Frame-Options "";
|
||||
}
|
||||
|
||||
location /attachments/ {
|
||||
|
Loading…
Reference in New Issue
Block a user