4590a2380e
This commit adds a Strict-Transport-Security header to the nginx config file generated by the nextcloud module. The Strict-Transport-Security header is recommended in official guide for hardening Nextcloud installations: https://docs.nextcloud.com/server/16/admin_manual/installation/harden_server.html Further, if it is not set, we see a warning in the security scan results in the Nextcloud admin panel: ``` The "Strict-Transport-Security" HTTP header is not set to at least "15552000" seconds. For enhanced security, it is recommended to enable HSTS as described in the security tips ``` |
||
|---|---|---|
| .. | ||
| doc | ||
| lib | ||
| maintainers | ||
| modules | ||
| tests | ||
| COPYING | ||
| default.nix | ||
| README | ||
| release-combined.nix | ||
| release-small.nix | ||
| release.nix | ||
*** NixOS *** NixOS is a Linux distribution based on the purely functional package management system Nix. More information can be found at http://nixos.org/nixos and in the manual in doc/manual.