diff options
Diffstat (limited to 'netlify.toml')
-rw-r--r-- | netlify.toml | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/netlify.toml b/netlify.toml new file mode 100644 index 0000000..d733f41 --- /dev/null +++ b/netlify.toml @@ -0,0 +1,29 @@ +[build] + publish = "website/public" + +[[headers]] + for = "/*" + [headers.values] + x-content-type-options = "nosniff" + x-xss-protection = "1; mode=block" + referrer-policy = "strict-origin-when-cross-origin" + strict-transport-security = "max-age=63072000; includeSubDomains; preload" + cache-control = ''' + max-age=300, + s-maxage=86400, + state-while-revalidate + ''' + content-security-policy = ''' + default-src 'none'; + img-src 'self' https://gc.zgo.at; + object-src 'none'; + script-src 'self' https://gc.zgo.at; + style-src + 'sha256-a4TPKWHB0aSu7cV10GthTEySTJ0w4r0bw6Q8JsNYMbk=' + 'sha256-gyxzfgCOxeAAL8URUdaW2nHYDOr9bzbwFjgSqi7D+8U='; + form-action 'none'; + base-uri 'self'; + connect-src https://alanpearce-eu.goatcounter.com/count; + frame-ancestors 'https://kagi.com'; + require-trusted-types-for "'script'" +''' |