avoid regex location for webmanifest

thestinger · thestinger · commit f5ee736495f4 · 2024-03-22T20:44:35.000-04:00
diff --git a/nginx/nginx.conf b/nginx/nginx.conf
@@ -367,6 +367,12 @@ http {
             default_type application/trafficadvice+json;
         }
 
+        location = /manifest.webmanifest {
+            include snippets/security-headers.conf;
+            add_header Cross-Origin-Resource-Policy "same-origin" always;
+            add_header Cache-Control "public, max-age=604800";
+        }
+
         location = /install/web {
             include snippets/security-headers-base.conf;
             add_header Content-Security-Policy "default-src 'none'; child-src 'self'; connect-src 'self' https://releases.grapheneos.org/; font-src 'self'; img-src 'self'; manifest-src 'self'; script-src 'self'; style-src 'self'; webrtc 'block'; form-action 'none'; frame-ancestors 'none'; base-uri 'none'" always;
@@ -408,12 +414,6 @@ http {
             add_header Cache-Control "public, max-age=31536000, immutable";
         }
 
-        location ~ "\.webmanifest$" {
-            include snippets/security-headers.conf;
-            add_header Cross-Origin-Resource-Policy "same-origin" always;
-            add_header Cache-Control "public, max-age=604800";
-        }
-
         location ~ "\.svg$" {
             include snippets/security-headers.conf;
             add_header Cross-Origin-Resource-Policy "same-origin" always;
