NGINX-Configs/etc/nginx/snippets/cross-origin-security.conf

# CORP, COOP, and COEP headers
# Meant to be used globally, but some apps may need a manual overwrite, so this is split out from security.conf

proxy_hide_header Cross-Origin-Resource-Policy;
add_header Cross-Origin-Resource-Policy cross-origin always;

proxy_hide_header Cross-Origin-Opener-Policy;
add_header Cross-Origin-Opener-Policy same-origin always;

proxy_hide_header Cross-Origin-Opener-Policy;
Cross-Origin-Embedder-Policy require-corp always;
Split out cross origin security headers 2024-06-25 15:10:02 -07:00			`# CORP, COOP, and COEP headers`
			`# Meant to be used globally, but some apps may need a manual overwrite, so this is split out from security.conf`

			`proxy_hide_header Cross-Origin-Resource-Policy;`
			`add_header Cross-Origin-Resource-Policy cross-origin always;`

			`proxy_hide_header Cross-Origin-Opener-Policy;`
			`add_header Cross-Origin-Opener-Policy same-origin always;`

			`proxy_hide_header Cross-Origin-Opener-Policy;`
			`Cross-Origin-Embedder-Policy require-corp always;`