Adding security headers for NginX

2020-01-08 19:21:43 +01:00
parent 369bd4fc62
commit 2c8d784fd7
3 changed files with 10 additions and 0 deletions
--- a/roles/nginx/templates/nginx.ssl.conf.j2
+++ b/roles/nginx/templates/nginx.ssl.conf.j2
@@ -24,3 +24,8 @@

 	## verify chain of trust of OCSP response using Root CA and Intermediate certs
 	ssl_trusted_certificate /etc/ssl/certs/ca-certificates.crt;
+
+	# Other security headers
+	add_header X-Frame-Options "SAMEORIGIN" always;
+	add_header X-Xss-Protection "1; mode=block" always;
+	add_header X-Content-Type-Options "nosniff" always;