Redocly/redoc
1
1
Fork 0
mirror of https://github.com/Redocly/redoc.git synced 2025-08-07 21:54:53 +03:00
Code Issues Packages Projects Releases Wiki Activity

fix: Remove CSP header from nginx

Browse Source
This commit is contained in:
Daniel Schosser 2020-05-11 10:54:35 +02:00
parent 6d3474809b
commit c6c199161b
1 changed files with 3 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
config/docker/nginx.conf
View File

@ -25,8 +25,7 @@ http {
add_header 'X-Frame-Options' 'deny always'; add_header 'X-Frame-Options' 'deny always';
add_header 'X-XSS-Protection' '"1; mode=block" always'; add_header 'X-XSS-Protection' '"1; mode=block" always';
add_header 'X-Content-Type-Options' 'nosniff always'; add_header 'X-Content-Type-Options' 'nosniff always';
add_header 'Content-Security-Policy' '"default-src \'none\'" always'; add_header 'Referrer-Policy' 'strict-origin-when-cross-origin';
add_header 'Referrer-Policy' 'strict-origin-when-cross-origin always';
# Set access control header # Set access control header
add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Origin' '*';
@ -48,8 +47,7 @@ http {
add_header 'X-Frame-Options' 'deny always'; add_header 'X-Frame-Options' 'deny always';
add_header 'X-XSS-Protection' '"1; mode=block" always'; add_header 'X-XSS-Protection' '"1; mode=block" always';
add_header 'X-Content-Type-Options' 'nosniff always'; add_header 'X-Content-Type-Options' 'nosniff always';
add_header 'Content-Security-Policy' '"default-src \'none\'" always'; add_header 'Referrer-Policy' 'strict-origin-when-cross-origin';
add_header 'Referrer-Policy' 'strict-origin-when-cross-origin always';
# Set access control header # Set access control header
add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Origin' '*';
@ -61,8 +59,7 @@ http {
add_header 'X-Frame-Options' 'deny always'; add_header 'X-Frame-Options' 'deny always';
add_header 'X-XSS-Protection' '"1; mode=block" always'; add_header 'X-XSS-Protection' '"1; mode=block" always';
add_header 'X-Content-Type-Options' 'nosniff always'; add_header 'X-Content-Type-Options' 'nosniff always';
add_header 'Content-Security-Policy' '"default-src \'none\'" always'; add_header 'Referrer-Policy' 'strict-origin-when-cross-origin';
add_header 'Referrer-Policy' 'strict-origin-when-cross-origin always';
# Set access control header # Set access control header
add_header 'Access-Control-Allow-Origin' '*'; add_header 'Access-Control-Allow-Origin' '*';