From 200701c1bddae4b9a854579ced35cb6aa325ad63 Mon Sep 17 00:00:00 2001 From: Alan Pearce Date: Wed, 29 May 2024 17:47:27 +0200 Subject: move referrer-policy to HTTP header and harden --- config.toml | 1 + templates/404.html | 1 - templates/homepage.html | 1 - templates/list.html | 1 - templates/post.html | 1 - templates/tags.html | 1 - 6 files changed, 1 insertion(+), 5 deletions(-) diff --git a/config.toml b/config.toml index de6c9d5..70ed9f7 100644 --- a/config.toml +++ b/config.toml @@ -42,6 +42,7 @@ oidc_host = "https://id.alanpearce.eu/" [extra.headers] cache-control = "max-age=14400" x-content-type-options = "nosniff" + referrer-policy = "strict-origin-when-cross-origin" strict-transport-security = "max-age=63072000; includeSubDomains; preload" [[menus.main]] diff --git a/templates/404.html b/templates/404.html index eade0f9..81b2a54 100644 --- a/templates/404.html +++ b/templates/404.html @@ -4,7 +4,6 @@ Site Title - Site Title - Site Title - - Site Title -