18 lines
951 B
ApacheConf
18 lines
951 B
ApacheConf
|
<IfModule mod_rewrite.c>
|
||
|
|
RewriteEngine on
|
||
|
|
RewriteCond %{HTTP:X-Forwarded-Proto} !https
|
||
|
|
RewriteRule ^(.*)$ https://%{HTTP_HOST}/$1 [R=301,L]
|
||
|
|
RedirectMatch 301 /weblog/? /blog/
|
||
|
|
RewriteRule ^[0-9]{4}/[0-9]{2}/(.*)$ /blog/posts/$1 [R=301,L]
|
||
|
|
</IfModule>
|
||
|
|
|
||
|
|
Header always unset X-Powered-By
|
||
|
|
Header always set Strict-Transport-Security: "max-age=31536000; includeSubdomains; preload" env=HTTPS
|
||
|
|
Header always set Content-Security-Policy "upgrade-insecure-requests"
|
||
|
|
Header always set X-Content-Type-Options "nosniff"
|
||
|
|
Header always set X-XSS-Protection "1; mode=block"
|
||
|
|
Header always append X-Frame-Options SAMEORIGIN
|
||
|
|
Header always set Expect-CT "max-age=7776000, enforce"
|
||
|
|
Header always set Referrer-Policy: "no-referrer-when-downgrade"
|
||
|
|
Header always set Permissions-Policy "geolocation=();midi=();notifications=();push=();sync-xhr=();microphone=();camera=();magnetometer=();gyroscope=();speaker=(self);vibrate=();fullscreen=(self);payment=();interest-cohort=();"
|