hosting/cloudserve-infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

feat(nextcloud): Add caddy server HSTS preload, webfinger

Browse source
This commit is contained in:
Marty Oehme 2025-02-03 21:34:58 +01:00
parent 1a3fd9160e
commit 0d7e99763f
Signed by: Marty
GPG key ID: EDBF2ED917B2EF6A
1 changed files with 4 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

6
roles/nextcloud/files/Caddyfile
View file

@ -10,7 +10,7 @@
header { header {
# enable HSTS # enable HSTS
Strict-Transport-Security max-age=31536000; Strict-Transport-Security max-age=31536000;includeSubDomains;preload;
Permissions-Policy interest-cohort=() Permissions-Policy interest-cohort=()
X-Content-Type-Options nosniff X-Content-Type-Options nosniff
X-Frame-Options SAMEORIGIN X-Frame-Options SAMEORIGIN
@ -18,11 +18,13 @@
X-XSS-Protection "1; mode=block" X-XSS-Protection "1; mode=block"
X-Permitted-Cross-Domain-Policies none X-Permitted-Cross-Domain-Policies none
X-Robots-Tag "noindex, nofollow" X-Robots-Tag "noindex, nofollow"
-X-Powered-By
} }
# client support (e.g. os x calendar / contacts)
redir /.well-known/carddav /remote.php/dav 301 redir /.well-known/carddav /remote.php/dav 301
redir /.well-known/caldav /remote.php/dav 301 redir /.well-known/caldav /remote.php/dav 301
redir /.well-known/webfinger /index.php/.well-known/webfinger 301
redir /.well-known/nodeinfo /index.php/.well-known/nodeinfo 301
# Uncomment this block if you use the high speed files backend: https://github.com/nextcloud/notify_push # Uncomment this block if you use the high speed files backend: https://github.com/nextcloud/notify_push
#handle_path /push/* { #handle_path /push/* {