titanz/NGINX-Configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Undo 1ade01c - Split HSTS headers again

Browse Source 
nginx-module-headers-more requires third party repo
This commit is contained in:
Tommy
2025-01-03 07:08:15 -07:00
committed by GitHub
parent a4dd4b6237
commit 662d06a701
7 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
etc/nginx/conf.d/default-quic.conf
View File

@@ -6,6 +6,7 @@ server {
server_name hostname.of.your.server;
include snippets/hsts.conf;
include snippets/quic.conf;
include snippets/robots.conf;
include snippets/universal_paths.conf;

1
etc/nginx/conf.d/sites_miniflux.conf
View File

@@ -10,6 +10,7 @@ server {
ssl_certificate_key /etc/letsencrypt/live/miniflux.yourdomain.tld/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/miniflux.yourdomain.tld/chain.pem;
include snippets/hsts.conf;
include snippets/security.conf;
include snippets/cross-origin-security.conf;
include snippets/quic.conf;

1
etc/nginx/conf.d/sites_nextcloud.conf
View File

@@ -10,6 +10,7 @@ server {
ssl_certificate_key /etc/letsencrypt/live/cloud.yourdomain.tld/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/cloud.yourdomain.tld/chain.pem;
include snippets/hsts.conf;
include snippets/security.conf;
include snippets/quic.conf;
include snippets/proxy.conf;

1
etc/nginx/conf.d/sites_uptime-kuma.conf
View File

@@ -10,6 +10,7 @@ server {
ssl_certificate_key /etc/letsencrypt/live/uptime.yourdomain.tld/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/uptime.yourdomain.tld/chain.pem;
include snippets/hsts.conf;
include snippets/security.conf;
include snippets/cross-origin-security.conf;
include snippets/quic.conf;

1
etc/nginx/conf.d/sites_vaultwarden.conf
View File

@@ -10,6 +10,7 @@ server {
ssl_certificate_key /etc/letsencrypt/live/vault.yourdomain.tld/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/vault.yourdomain.tld/chain.pem;
include snippets/hsts.conf;
include snippets/security.conf;
include snippets/cross-origin-security.conf;
include snippets/quic.conf;

4
etc/nginx/snippets/hsts.conf Normal file
View File

@@ -0,0 +1,4 @@
# Enable HSTS header
# Only add this to server blocks with TLS
proxy_hide_header Strict-Transport-Security;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;