Commit Graph

467 Commits

Author SHA1 Message Date
dependabot[bot] 88af6cce31 Bump h5bp/server-configs-test from 5.0.0 to 5.0.1
Bumps [h5bp/server-configs-test](https://github.com/h5bp/server-configs-test) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/h5bp/server-configs-test/releases)
- [Commits](https://github.com/h5bp/server-configs-test/compare/5.0.0...5.0.1)

---
updated-dependencies:
- dependency-name: h5bp/server-configs-test
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-30 02:21:52 +02:00
Léo Colombaro 4a40f258a2
Use latest server-configs-test and align requirements 2021-06-29 00:54:40 +02:00
Léo Colombaro 25a569d97d
Add Cross Origin Policies headers
Ref https://github.com/h5bp/server-configs-apache/issues/250
2021-06-28 14:46:32 +02:00
Léo Colombaro 36310b927b
Add `Permissions-Policy` header
Ref https://github.com/h5bp/server-configs-apache/issues/179
2021-06-28 14:43:00 +02:00
Léo Colombaro 8600df1018
Make `Content-Security-Policy` disallow 'object-src' by default
Ref https://github.com/h5bp/server-configs-apache/issues/190
2021-06-28 14:28:44 +02:00
Phil Wareham b9ef881d62
Add JPEG XL `image/jxl` MIME type (#274) 2021-06-24 16:41:52 +02:00
Léo Colombaro db79ae491f
Fix documentation wording 2021-06-14 20:21:21 +02:00
Léo Colombaro 688348a5fd Modernize TLS configuration 2021-06-14 15:24:52 +02:00
Léo Colombaro f6e5a123e2
Improve security headers documentation
Refresh and reorder links
2021-06-14 12:38:26 +02:00
Léo Colombaro 4b773f0967 Bump server-configs-test 2021-06-14 01:14:22 +02:00
Léo Colombaro f239e2d043 Clean up IE reference 2021-06-14 01:14:22 +02:00
Léo Colombaro 836467c8b5 Drop `X-XSS-Protection` header usage as per its deprecation
Ref https://github.com/h5bp/server-configs-apache/pull/253
Ref https://github.com/h5bp/server-configs-apache/issues/198

Closes https://github.com/h5bp/server-configs-nginx/pull/260
2021-06-14 01:14:22 +02:00
Léo Colombaro 4556277ced Drop `X-UA-Compatible` header usage as per IE deprecation
Ref https://github.com/h5bp/server-configs-apache/issues/210
Ref https://github.com/h5bp/server-configs-apache/issues/182
2021-06-14 01:14:22 +02:00
Julio 501444ab43
Improve `X-Frame-Options` documentation (#277)
Co-authored-by: Léo Colombaro <git@colombaro.fr>
2021-06-13 23:30:25 +02:00
dependabot[bot] d249bf2f2b Bump h5bp/server-configs-test from 3.3.0 to 3.3.1
Bumps [h5bp/server-configs-test](https://github.com/h5bp/server-configs-test) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/h5bp/server-configs-test/releases)
- [Commits](https://github.com/h5bp/server-configs-test/compare/3.3.0...bf793fca2bd00d7ccd9b4a14eae65a42ad16c935)

Signed-off-by: dependabot[bot] <support@github.com>
2021-03-19 06:30:18 +01:00
Léo Colombaro b7eb27ab5f
Add additional Nginx checks (#269) 2021-03-01 16:45:29 +01:00
Léo Colombaro 59d0efa149
Release v3.3.0 2021-01-05 13:39:09 +01:00
Léo Colombaro ba4967f99e
Add mime-type `image/apng` 2021-01-05 10:50:52 +01:00
Léo Colombaro a9aea7038c Add mime-type `image/avif` and `image/avifs` 2021-01-05 10:49:47 +01:00
dependabot[bot] 18f129051b Bump h5bp/server-configs-test from 3.2.1 to 3.3.0
Bumps [h5bp/server-configs-test](https://github.com/h5bp/server-configs-test) from 3.2.1 to 3.3.0.
- [Release notes](https://github.com/h5bp/server-configs-test/releases)
- [Commits](https://github.com/h5bp/server-configs-test/compare/3.2.1...013812d56a2a95eb2d6f459bee5ed543a0a9577c)

Signed-off-by: dependabot[bot] <support@github.com>
2021-01-05 10:49:47 +01:00
dependabot[bot] 79597b41fb Bump h5bp/server-configs-test from 3.1.3 to 3.2.1
Bumps [h5bp/server-configs-test](https://github.com/h5bp/server-configs-test) from 3.1.3 to 3.2.1.
- [Release notes](https://github.com/h5bp/server-configs-test/releases)
- [Commits](https://github.com/h5bp/server-configs-test/compare/3.1.3...dc75d421015e1140e6873dd79244ce9b3c9171ca)

Signed-off-by: dependabot[bot] <support@github.com>
2020-12-30 09:32:44 +01:00
franz-josef-kaiser d7f6fa09d3 docs: Correct reference to weaker policy in doc block. 2020-12-30 00:09:53 +01:00
Pete Cooper 654f1aa49c minor presentational fixes 2020-12-29 20:55:50 +01:00
Léo Colombaro f0b3fd25ce
Improve writing
[ci skip]
2020-12-29 18:22:16 +01:00
dependabot[bot] 18d933c256 Bump actions/checkout from v2.3.3 to v2.3.4
Bumps [actions/checkout](https://github.com/actions/checkout) from v2.3.3 to v2.3.4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.3...5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f)

Signed-off-by: dependabot[bot] <support@github.com>
2020-11-04 16:21:57 +01:00
dependabot[bot] 658edd17f1 Bump actions/checkout from v2.3.2 to v2.3.3
Bumps [actions/checkout](https://github.com/actions/checkout) from v2.3.2 to v2.3.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.2...a81bbbf8298c0fa03ea29cdc473d45769f953675)

Signed-off-by: dependabot[bot] <support@github.com>
2020-09-24 17:44:19 +02:00
dependabot[bot] 34b0e8f0d5 Bump actions/checkout from v2.3.1 to v2.3.2
Bumps [actions/checkout](https://github.com/actions/checkout) from v2.3.1 to v2.3.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.1...2036a08e25fa78bbd946711a407b529a0a1204bf)

Signed-off-by: dependabot[bot] <support@github.com>
2020-08-10 11:39:22 +02:00
dependabot[bot] 22b9267726 Bump actions/checkout from v2.3.0 to v2.3.1
Bumps [actions/checkout](https://github.com/actions/checkout) from v2.3.0 to v2.3.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/master/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2.3.0...28c7f3d2b5162b5ddd3dfd9a45aa55eaf396478b)

Signed-off-by: dependabot[bot] <support@github.com>
2020-06-19 10:08:38 +02:00
Léo Colombaro bd7bb3b773
Update Dependabot config 2020-06-17 16:37:03 +02:00
dependabot[bot] 28f7518ed4 Bump actions/checkout from v2 to v2.3.0
Bumps [actions/checkout](https://github.com/actions/checkout) from v2 to v2.3.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/master/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...b4483adec309c0d01a5435c5e24eb40de5773ad9)

Signed-off-by: dependabot[bot] <support@github.com>
2020-06-17 10:17:28 +02:00
Léo Colombaro a29ff264db Bump h5bp/server-configs-test to 3.1.3 2020-06-03 01:00:40 +02:00
Léo Colombaro ae8f7e1325 Bump h5bp/server-configs-test to 3.1.2 2020-06-03 01:00:40 +02:00
dependabot-preview[bot] 9950dc534a Create Dependabot config file 2020-06-03 01:00:40 +02:00
Léo Colombaro 1424330bb5 Bump h5bp/server-configs-test to 3.1.1 2020-05-16 00:34:28 +02:00
Léo Colombaro abcf858614 Assorted grammar and link fixes 2020-04-14 11:54:27 +02:00
Léo Colombaro 73812b24fc Release v3.2.0 2020-04-14 10:25:21 +02:00
Léo Colombaro 4e6d15ee93 Improve README 2020-04-14 10:20:46 +02:00
Léo Colombaro 5ca3aed56c Improve README 2020-04-13 21:42:44 +02:00
Léo Colombaro b727394a54 Improve wordings in README 2020-04-13 15:00:44 +02:00
Léo Colombaro 751f8b5153 Use sct latest release 2020-04-13 14:44:29 +02:00
Léo Colombaro 98de990c1c Add expandable policies to SVGZ 2020-04-13 14:44:29 +02:00
Léo Colombaro 3615dfa351 Expand responses to include Referrer Policy 2020-04-13 14:44:29 +02:00
Léo Colombaro 41689406c8 Expand responses to include CSP
Ref: https://github.com/h5bp/server-configs-apache/issues/187
2020-04-13 14:44:29 +02:00
Léo Colombaro de4564ec9c Switch to GitHub Actions for CI 2020-04-13 14:44:29 +02:00
Erik Swan bb2a30cacc Update README.md
According to the nginx documentation, commands like `nginx reload` need the `-s` flag, as in `nginx -s reload`. This commit fixes the command examples in the README.
2020-04-06 23:38:29 +02:00
Erik Swan 5f6dc74932 Update example.com.conf to use error page include
Use the error page include instead of the error_page 404 directive. This aligns example.com.conf with no-ssl.example.com.conf.
2020-04-06 12:55:03 +02:00
Vincent Herbet d2f597235a Do no use non-ASCII characters in loaded configs
I had an issue with Certbot (let's encrypt) which failed to reload nginx due to a non-ASCII character in a loaded config file.
E.g.: `Attempting to renew cert (domain.com) from /etc/letsencrypt/renewal/domain.com.conf produced an unexpected error: 'ascii' codec can't decode byte 0xe2 in position 762: ordinal not in range(128). Skipping.`

I found this character using `grep -r -P '[^\x00-\x7f]' /etc/nginx`.
2020-02-05 18:33:14 +01:00
Léo Colombaro 28cb47df42
Rename no-transform.conf file to content_transformation.conf
Align with other files and with Apache struct
2020-01-04 18:06:00 +01:00
Léo Colombaro 71535eacc8
Add funding file 2020-01-03 19:38:58 +01:00
Léo Colombaro e0724b8149
Stricter default for Referrer Policy
Ref: https://github.com/h5bp/server-configs-apache/pull/204
2020-01-03 19:36:51 +01:00