From 819c0e63721e75261a05f3788aed74384e12a347 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Fri, 3 Jan 2025 08:22:55 -0700
Subject: [PATCH] Add note for credentialless

---
 etc/nginx/snippets/cross-origin-security.conf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/etc/nginx/snippets/cross-origin-security.conf b/etc/nginx/snippets/cross-origin-security.conf
index 8acc8db..3861307 100644
--- a/etc/nginx/snippets/cross-origin-security.conf
+++ b/etc/nginx/snippets/cross-origin-security.conf
@@ -7,5 +7,7 @@ add_header Cross-Origin-Resource-Policy "same-origin" always;
 proxy_hide_header Cross-Origin-Opener-Policy;
 add_header Cross-Origin-Opener-Policy "same-origin" always;
 
+# Change COEP to "credentialless" when supported by Safari
+# https://developer.mozilla.org/en-US/docs/Web/API/Window/credentialless
 proxy_hide_header Cross-Origin-Embedder-Policy;
 add_header Cross-Origin-Embedder-Policy "require-corp" always;
\ No newline at end of file