ready for production

author: Thorsten Ortlepp <post@ortlepp.eu> 2024-12-13 00:11:59 +0100
committer: Thorsten Ortlepp <post@ortlepp.eu> 2024-12-13 00:11:59 +0100
commit: 5507304cdeedb6a09f71da30002612383918d02f (patch)
tree: 694474042dde815a0b1c1fcaa30636fbc8ef21df /static/.htaccess
parent: fa9ccbd94724e9edc849a7dce46c0d468ee47fd5 (diff)
download: website-ortleppms-5507304cdeedb6a09f71da30002612383918d02f.zip
1 files changed, 10 insertions, 0 deletions
diff --git a/static/.htaccess b/static/.htaccess
new file mode 100644
index 0000000..28b709e
--- /dev/null
+++ b/static/.htaccess
@@ -0,0 +1,10 @@
+<IfModule mod_headers.c>
+  Header setifempty X-Content-Type-Options "nosniff"
+  Header setifempty X-Frame-Options "DENY"
+  Header setifempty X-XSS-Protection "1; mode=block"
+  Header setifempty Referrer-Policy "strict-origin"
+  Header setifempty Content-Security-Policy "default-src 'none'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; connect-src 'self'; form-action 'none'; base-uri 'self'; frame-ancestors 'none'"
+  Header setifempty Permissions-Policy "camera=(), microphone=(), geolocation=(), gyroscope=(), magnetometer=(), usb=()"
+</IfModule>
+
+ErrorDocument 404 /404.html
author	Thorsten Ortlepp <post@ortlepp.eu>	2024-12-13 00:11:59 +0100
committer	Thorsten Ortlepp <post@ortlepp.eu>	2024-12-13 00:11:59 +0100
commit	5507304cdeedb6a09f71da30002612383918d02f (patch)
tree	694474042dde815a0b1c1fcaa30636fbc8ef21df /static/.htaccess
parent	fa9ccbd94724e9edc849a7dce46c0d468ee47fd5 (diff)
download	website-ortleppms-5507304cdeedb6a09f71da30002612383918d02f.zip