security/hakurei.app
security/hakurei.app
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

avoid breaking image hotlinking for now

Browse Source
This commit is contained in:
Daniel Micay 2021-04-15 04:23:34 -04:00
parent e7f6cff9c2
commit 56d73685e3
1 changed files with 12 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
nginx/nginx.conf
View File

@ -202,12 +202,19 @@ http {
try_files $uri.html =404; try_files $uri.html =404;
} }
location = /favicon.ico {
include snippets/security-headers.conf;
# avoid breaking image hotlinking such as https://github.com/TryGhost/Ghost/issues/12880
add_header Cross-Origin-Resource-Policy "cross-origin" always;
add_header Cache-Control "public, max-age=604800";
}
# broken link (now fixed) on https://noagendaphone.com/ with UTF-8 replacement character # broken link (now fixed) on https://noagendaphone.com/ with UTF-8 replacement character
location ~ "^/\xEF\xBF\xBC$" { location ~ "^/\xEF\xBF\xBC$" {
return 301 /; return 301 /;
} }
location ~ "\.(ico|webmanifest)$" { location ~ "\.webmanifest$" {
include snippets/security-headers.conf; include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always; add_header Cross-Origin-Resource-Policy "same-origin" always;
add_header Cache-Control "public, max-age=604800"; add_header Cache-Control "public, max-age=604800";
@ -221,6 +228,8 @@ http {
location ~ "\.svg$" { location ~ "\.svg$" {
include snippets/security-headers.conf; include snippets/security-headers.conf;
# avoid breaking image hotlinking such as https://github.com/TryGhost/Ghost/issues/12880
add_header Cross-Origin-Resource-Policy "cross-origin" always;
add_header Cache-Control "public, max-age=31536000"; add_header Cache-Control "public, max-age=31536000";
} }
@ -234,6 +243,8 @@ http {
location ~ "\.png$" { location ~ "\.png$" {
include snippets/security-headers.conf; include snippets/security-headers.conf;
# avoid breaking image hotlinking such as https://github.com/TryGhost/Ghost/issues/12880
add_header Cross-Origin-Resource-Policy "cross-origin" always;
add_header Cache-Control "public, max-age=31536000"; add_header Cache-Control "public, max-age=31536000";
gzip_static off; gzip_static off;
brotli_static off; brotli_static off;