mirror of
https://github.com/matrix-org/matrix.org.git
synced 2026-01-11 20:07:22 +00:00
25 lines
810 B
Text
25 lines
810 B
Text
# Remove the ACAO header which is added by default on Cloudflare Pages
|
|
# Enables XSS filtering
|
|
# Avoid MIME type sniffing
|
|
# Set HSTS
|
|
# Set X-Frame-Options
|
|
# Referrer-Policy: default
|
|
/*
|
|
! Access-Control-Allow-Origin
|
|
X-XSS-Protection: 1; mode=block
|
|
X-Content-Type-Options: nosniff
|
|
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
|
|
X-Frame-Options: SAMEORIGIN
|
|
Referrer-Policy: strict-origin-when-cross-origin
|
|
|
|
|
|
# Allow ACAO for well-known records and serve them as JSON
|
|
/.well-known/matrix/*
|
|
Access-Control-Allow-Origin: *
|
|
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
|
|
Access-Control-Allow-Headers: X-Requested-With, Content-Type, Authorization
|
|
Content-Type: application/json
|
|
|
|
# Add content type for jira archive
|
|
/jira/browse/*
|
|
Content-Type: text/plain
|