Global resource: webdock.io
-
server_tokens off;
-
Content Security Policy Reference
add_header Content-Security-Policy "default-src 'self';" always;
-
add_header X-Frame-Options SAMEORIGIN always; -
add_header X-Xss-Protection "1; mode=block" always;
-
add_header Referrer-Policy "strict-origin" always;
-
add_header Permissions-Policy "geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()";
-
add_header X-Content-Type-Options nosniff always;