vhost_security.j2 423 B

12345678910111213141516
  1. {% if ansible_prolog -%}
  2. {% from 'templates/ansible/prolog.j2' import prolog with context %}
  3. {{ prolog() }}
  4. {% endif -%}
  5. #
  6. # Various security rules
  7. #
  8. # Clickjacking protection
  9. add_header X-Frame-Options "sameorigin";
  10. # Cross-site scripting (XSS) filter
  11. add_header X-XSS-Protection "1; mode=block";
  12. # Prevents from MIME-sniffing a response away from the declared content-type
  13. add_header X-Content-Type-Options "nosniff";