move referrer-policy to HTTP header and harden

author: Alan Pearce 2024-05-29 17:47:27 +0200
committer: Alan Pearce 2024-05-29 17:47:27 +0200
commit: 5331abaa179812eca1ea764ca6025529cc59962c (patch)
tree: fde3557b4daeda35c9da215f45262230350be24f /config.toml
parent: acbcf42f87eb530ad6df59ca3a792adb323c7b11 (diff)
download: website-5331abaa179812eca1ea764ca6025529cc59962c.tar.lz
website-5331abaa179812eca1ea764ca6025529cc59962c.tar.zst
website-5331abaa179812eca1ea764ca6025529cc59962c.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/config.toml b/config.toml
index de6c9d5..70ed9f7 100644
--- a/config.toml
+++ b/config.toml
@@ -42,6 +42,7 @@ oidc_host = "https://id.alanpearce.eu/"
 [extra.headers]
   cache-control = "max-age=14400"
   x-content-type-options = "nosniff"
+  referrer-policy = "strict-origin-when-cross-origin"
   strict-transport-security = "max-age=63072000; includeSubDomains; preload"
 
 [[menus.main]]
author	Alan Pearce	2024-05-29 17:47:27 +0200
committer	Alan Pearce	2024-05-29 17:47:27 +0200
commit	5331abaa179812eca1ea764ca6025529cc59962c (patch)
tree	fde3557b4daeda35c9da215f45262230350be24f /config.toml
parent	acbcf42f87eb530ad6df59ca3a792adb323c7b11 (diff)
download	website-5331abaa179812eca1ea764ca6025529cc59962c.tar.lz website-5331abaa179812eca1ea764ca6025529cc59962c.tar.zst website-5331abaa179812eca1ea764ca6025529cc59962c.zip