mirror of
https://github.com/kccleoc/seedpgp-web.git
synced 2026-03-06 17:37:51 +08:00
18 lines
692 B
Plaintext
18 lines
692 B
Plaintext
/*
|
|
Cloudflare Pages headers for SeedPGP Web
|
|
This file must be named _headers at build output root, or in public/_headers,
|
|
depending on your deployment setup.
|
|
*/
|
|
|
|
/*
|
|
Catch-all for the app
|
|
*/
|
|
/
|
|
|
|
/* Security headers */
|
|
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob:; connect-src 'self' blob: data:; font-src 'self'; object-src 'none'; media-src 'self' blob:; base-uri 'self'; form-action 'none'; frame-ancestors 'none';
|
|
X-Frame-Options: DENY
|
|
X-Content-Type-Options: nosniff
|
|
Referrer-Policy: no-referrer
|
|
Permissions-Policy: camera=(), microphone=(), geolocation=()
|