christian.suessenguth/portal
1
0
Fork 0
forked from web/portal
Code Issues Pull Requests Projects Releases Wiki Activity
Files
242e12d2b6895a085c23a0183dec634ba8e381e3
portal/static/.htaccess
Thomas Dedek 0f2006bbf4 remove password protection
2020-02-07 10:59:47 +01:00

6 lines
358 B
ApacheConf
Raw Blame History

# CSP Starter Policy: allows images, scripts, AJAX, and CSS from the same origin, and does not allow any other resources to load (eg object, frame, media, etc).
Header set Content-Security-Policy "default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self';"
# Referrer Policy
Header always set Referrer-Policy "no-referrer"
Reference in New Issue View Git Blame Copy Permalink