security/hakurei.app
security/hakurei.app
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

avoid regex location for webmanifest

Browse Source
This commit is contained in:
Daniel Micay 2024-03-22 20:44:21 -04:00
parent fa6725b935
commit 517c9ef396
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
nginx/nginx.conf
View File

@ -325,6 +325,12 @@ http {
location = /allowed_signers.sig {} location = /allowed_signers.sig {}
location = /allowed_signers.asc {} location = /allowed_signers.asc {}
location = /manifest.webmanifest {
include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always;
add_header Cache-Control "public, max-age=604800";
}
location = /favicon.ico { location = /favicon.ico {
if ($http_accept ~ "image/svg\+xml") { if ($http_accept ~ "image/svg\+xml") {
rewrite ^ /favicon.svg last; rewrite ^ /favicon.svg last;
@ -408,12 +414,6 @@ http {
add_header Cache-Control "public, max-age=31536000, immutable"; add_header Cache-Control "public, max-age=31536000, immutable";
} }
location ~ "\.webmanifest$" {
include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always;
add_header Cache-Control "public, max-age=604800";
}
location ~ "\.svg$" { location ~ "\.svg$" {
include snippets/security-headers.conf; include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always; add_header Cross-Origin-Resource-Policy "same-origin" always;