-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathnetlify.toml
30 lines (26 loc) · 1.24 KB
/
netlify.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
[[headers]]
for = "/*"
[headers.values]
Content-Security-Policy-Report-Only = "default-src 'none' ; script-src 'self' https://*.googletagmanager.com; img-src 'self' https://*.google-analytics.com https://*.googletagmanager.com; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com; style-src 'self' 'unsafe-inline' ; object-src 'none' ; worker-src 'self' ; manifest-src 'self' ; report-uri https://henkbakker.report-uri.com/r/d/csp/reportOnly;"
Content-Security-Policy = "upgrade-insecure-requests; block-all-mixed-content; report-uri https://henkbakker.report-uri.com/r/d/csp/enforce;"
Referrer-Policy = "same-origin"
X-Content-Type-Options = "nosniff"
X-Frame-Options = "DENY"
X-XSS-Protection = "1; mode=block"
[[headers]]
for = "/assets/*"
[headers.values]
Cache-Control = "public, max-age=2628000"
[[headers]]
for = "/service-worker.js"
[headers.values]
Cache-Control = "no-cache"
[build]
publish = "_site"
functions = "functions"
command = "bundle exec rake build:prod"
[[redirects]]
from = "https://henkbakker.dev/*"
to = "https://henkbakker.net/:splat"
status = 301
force = true