Merge pull request #25 from Star-Academy/fixcicd

fix: fix nginx config
Star-Academy · Aug 27, 2024 · 97e8859 · 97e8859
2 parents ef6873c + c327003
commit 97e8859
Showing 1 changed file with 12 additions and 13 deletions.
diff --git a/nginx.conf b/nginx.conf
@@ -31,26 +31,25 @@ http {
     error_log              /dev/null;
 
     # Load configs
-    # security headers
-    add_header X-XSS-Protection        "1; mode=block" always;
-    add_header X-Content-Type-Options  "nosniff" always;
-    add_header Referrer-Policy         "no-referrer-when-downgrade" always;
-    add_header Content-Security-Policy "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
-    add_header Permissions-Policy      "interest-cohort=()" always;
-
-    # . files
-    location ~ /\.(?!well-known) {
-        deny all;
-    }
+
     server {
         listen      80;
         listen      [::]:80;
         server_name example.com;
         root        /usr/share/nginx/html;
         index index.csr.html;
 
-        # security
-        include     nginxconfig.io/security.conf;
+        # security headers
+        add_header X-XSS-Protection        "1; mode=block" always;
+        add_header X-Content-Type-Options  "nosniff" always;
+        add_header Referrer-Policy         "no-referrer-when-downgrade" always;
+        add_header Content-Security-Policy "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
+        add_header Permissions-Policy      "interest-cohort=()" always;
+
+        # . files
+        location ~ /\.(?!well-known) {
+            deny all;
+        }
 
         # logging
         access_log  /var/log/nginx/access.log combined buffer=512k flush=1m;