Add Access-Control-Max-Age

2025-01-03 09:22:33 -07:00
parent 1ca56b7039
commit 65459ad784
2 changed files with 7 additions and 1 deletions
--- a/etc/nginx/snippets/cross-origin-security.conf
+++ b/etc/nginx/snippets/cross-origin-security.conf
@@ -10,4 +10,8 @@ add_header Cross-Origin-Opener-Policy "same-origin" always;
 # Change COEP to "credentialless" when supported by Safari
 # https://developer.mozilla.org/en-US/docs/Web/API/Window/credentialless
 proxy_hide_header Cross-Origin-Embedder-Policy;
-add_header Cross-Origin-Embedder-Policy "require-corp" always;
+add_header Cross-Origin-Embedder-Policy "require-corp" always;
+
+# Access-Control-Max-Age
+proxy_hide_header Access-Control-Max-Age;
+add_header Access-Control-Max-Age "600";