From 5507304cdeedb6a09f71da30002612383918d02f Mon Sep 17 00:00:00 2001
From: Thorsten Ortlepp <post@ortlepp.eu>
Date: Fri, 13 Dec 2024 00:11:59 +0100
Subject: ready for production

---
 static/.htaccess | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 static/.htaccess

(limited to 'static/.htaccess')

diff --git a/static/.htaccess b/static/.htaccess
new file mode 100644
index 0000000..28b709e
--- /dev/null
+++ b/static/.htaccess
@@ -0,0 +1,10 @@
+<IfModule mod_headers.c>
+  Header setifempty X-Content-Type-Options "nosniff"
+  Header setifempty X-Frame-Options "DENY"
+  Header setifempty X-XSS-Protection "1; mode=block"
+  Header setifempty Referrer-Policy "strict-origin"
+  Header setifempty Content-Security-Policy "default-src 'none'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline'; connect-src 'self'; form-action 'none'; base-uri 'self'; frame-ancestors 'none'"
+  Header setifempty Permissions-Policy "camera=(), microphone=(), geolocation=(), gyroscope=(), magnetometer=(), usb=()"
+</IfModule>
+
+ErrorDocument 404 /404.html
-- 
cgit v1.2.3