NAS-112996 / 12.0 / Bug fix and add more security headers (#7802)
* Bug fix and add more security headers
Add more security headers to the nginx config. Also fixes a misconfig where previously added security headers wouldn't be inherited in the /ui subpath.
* Remove some headers
Remove headers CSP, hardened STS, X-Content-Type-Options and X-XSS-Protection
* Only remove CSP after misunderstanding the comment in the PR
Co-authored-by:
Sebastian <sebastian.danielsson@protonmail.com>
Showing
+12 -3
Please register or sign in to comment