diff options
Diffstat (limited to 'static/.htaccess')
| -rw-r--r-- | static/.htaccess | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/static/.htaccess b/static/.htaccess new file mode 100644 index 0000000..28b709e --- /dev/null +++ b/static/.htaccess @@ -0,0 +1,10 @@ +<IfModule mod_headers.c> + Header setifempty X-Content-Type-Options "nosniff" + Header setifempty X-Frame-Options "DENY" + Header setifempty X-XSS-Protection "1; mode=block" + Header setifempty Referrer-Policy "strict-origin" + Header setifempty Content-Security-Policy "default-src 'none'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; connect-src 'self'; form-action 'none'; base-uri 'self'; frame-ancestors 'none'" + Header setifempty Permissions-Policy "camera=(), microphone=(), geolocation=(), gyroscope=(), magnetometer=(), usb=()" +</IfModule> + +ErrorDocument 404 /404.html |