From 4f1b4b6dcb93133769f13f2e9fba12eae6c6909d Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Tue, 25 Jun 2024 15:15:59 -0700
Subject: [PATCH] Restrict CORP

---
 etc/nginx/snippets/cross-origin-security.conf | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/etc/nginx/snippets/cross-origin-security.conf b/etc/nginx/snippets/cross-origin-security.conf
index e8f1b63..0b2458b 100644
--- a/etc/nginx/snippets/cross-origin-security.conf
+++ b/etc/nginx/snippets/cross-origin-security.conf
@@ -2,10 +2,10 @@
 # Meant to be used globally, but some apps may need a manual overwrite, so this is split out from security.conf
 
 proxy_hide_header Cross-Origin-Resource-Policy;
-add_header Cross-Origin-Resource-Policy cross-origin always;
+add_header Cross-Origin-Resource-Policy same-origin always;
 
 proxy_hide_header Cross-Origin-Opener-Policy;
 add_header Cross-Origin-Opener-Policy same-origin always;
 
-proxy_hide_header Cross-Origin-Opener-Policy;
-Cross-Origin-Embedder-Policy require-corp always;
\ No newline at end of file
+proxy_hide_header Cross-Origin-Embedder-Policy;
+add_header Cross-Origin-Embedder-Policy require-corp always;
\ No newline at end of file