ss
Signed-off-by: Jeff <jeff@gotenzing.com>
Showing
1 changed file
with
3 additions
and
1 deletions
| ... | @@ -153,9 +153,11 @@ ModPagespeed off | ... | @@ -153,9 +153,11 @@ ModPagespeed off |
| 153 | Header set X-Content-Type-Options "nosniff" | 153 | Header set X-Content-Type-Options "nosniff" |
| 154 | Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains" | 154 | Header always set Strict-Transport-Security "max-age=63072000; includeSubDomains" |
| 155 | # Header set Content-Security-Policy ... | 155 | # Header set Content-Security-Policy ... |
| 156 | Header add Content-Security-Policy "default-src 'self';" | ||
| 157 | Header set Referrer-Policy "same-origin" | 156 | Header set Referrer-Policy "same-origin" |
| 158 | Header set Feature-Policy "geolocation 'self'; vibrate 'none'" | 157 | Header set Feature-Policy "geolocation 'self'; vibrate 'none'" |
| 158 | |||
| 159 | #Header always edit Set-Cookie (.*) "$1; HttpOnly" | ||
| 160 | #Header always edit Set-Cookie (.*) "$1; Secure" | ||
| 159 | </IfModule> | 161 | </IfModule> |
| 160 | 162 | ||
| 161 | <IfModule mod_rewrite.c> | 163 | <IfModule mod_rewrite.c> | ... | ... |
-
Please register or sign in to post a comment