From c1770f90fe6a1bc5c68a5790ceb6f1033562e0ac Mon Sep 17 00:00:00 2001
From: Julien Palard <julien@palard.fr>
Date: Sun, 23 Jul 2023 12:12:27 +0200
Subject: [PATCH] CPS for logs.afpy.org

---
 logs.afpy.org.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/logs.afpy.org.yml b/logs.afpy.org.yml
index 715fcf2..e5971aa 100644
--- a/logs.afpy.org.yml
+++ b/logs.afpy.org.yml
@@ -25,6 +25,10 @@
               listen [::]:443 ssl http2; listen 443 ssl http2;
               server_name logs.afpy.org;
               include snippets/letsencrypt-logs.afpy.org.conf;
+              add_header Content-Security-Policy "default-src 'none'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline';";
+              add_header X-Content-Type-Options "nosniff";
+              add_header X-Frame-Options DENY;
+
               location /
               {
                   include proxy_params;