Skip to content

Commit

Permalink
avoid regex location for webmanifest
Browse files Browse the repository at this point in the history
  • Loading branch information
@thestinger
thestinger committed Mar 23, 2024
1 parent fa6725b commit f5ee736
Showing 1 changed file with 6 additions and 6 deletions.
12 changes: 6 additions & 6 deletions nginx/nginx.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -367,6 +367,12 @@ http {
default_type application/trafficadvice+json;
}

location = /manifest.webmanifest {
include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always;
add_header Cache-Control "public, max-age=604800";
}

location = /install/web {
include snippets/security-headers-base.conf;
add_header Content-Security-Policy "default-src 'none'; child-src 'self'; connect-src 'self' https://releases.grapheneos.org/; font-src 'self'; img-src 'self'; manifest-src 'self'; script-src 'self'; style-src 'self'; webrtc 'block'; form-action 'none'; frame-ancestors 'none'; base-uri 'none'" always;
Expand Down Expand Up @@ -408,12 +414,6 @@ http {
add_header Cache-Control "public, max-age=31536000, immutable";
}

location ~ "\.webmanifest$" {
include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always;
add_header Cache-Control "public, max-age=604800";
}

location ~ "\.svg$" {
include snippets/security-headers.conf;
add_header Cross-Origin-Resource-Policy "same-origin" always;
Expand Down

0 comments on commit f5ee736

Please sign in to comment.