Strona główna Odkrywaj Pomoc
Zaloguj się
chiappa
/
irdb
kopia lustrzana https://git.snix.ch/chiappa/irdb.git
1
0
Forkuj 0
Pliki Problemy 0
Drzewo: 33e9198800
Gałęzie Tagi
irdb
/
ui
/
docker
/
Caddyfile

Caddyfile 1.0 KB
Historia Czysty

12345678910111213141516171819202122232425262728293031323334 
  1. # FrankenPHP Caddyfile for the ui container.
    2. 

  2. # Serves Slim from public/ on :8080.
    3. 

  3. {
    4. 

  4.     frankenphp
    5. 

  5.     order php_server before file_server
    6. 

  6.     auto_https off
    7. 

  7.     admin off
    8. 

  8.     servers {
    9. 

  9.         trusted_proxies static private_ranges
    10. 

  10.     }
    11. 

  11. }
    12. 

  12. 

  13. :8080 {
    14. 

  14.     root * /app/public
    15. 

  15.     encode zstd gzip
    16. 

  16. 

  17.     # ── Security headers (M14) ──────────────────────────────────────────
    18. 

  18.     # CSP is set per-response by `App\Http\CspMiddleware` so the
    19. 

  19.     # `script-src 'nonce-…'` value can change per request, dropping
    20. 

  20.     # `'unsafe-inline'` / `'unsafe-eval'` (SEC_REVIEW F24).
    21. 

  21.     header {
    22. 

  22.         -Server
    23. 

  23.         -X-Powered-By
    24. 

  24.         X-Content-Type-Options "nosniff"
    25. 

  25.         X-Frame-Options "DENY"
    26. 

  26.         Referrer-Policy "strict-origin-when-cross-origin"
    27. 

  27.         Permissions-Policy "geolocation=(), microphone=(), camera=()"
    28. 

  28.     }
    29. 

  29. 

  30.     @prod expression `{env.APP_ENV} == "production"`
    31. 

  31.     header @prod Strict-Transport-Security "max-age=31536000; includeSubDomains"
    32. 

  32. 

  33.     php_server
    34. 

  34. }
    35.