-
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathconfig.yml
115 lines (115 loc) · 3.16 KB
/
config.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
# Default pages
pages:
default:
redirects:
path: _redirects
output: netlify_redirects
multilingual: false
serviceworker:
precache: false
headers:
path: _headers
output: netlify_headers
multilingual: false
serviceworker:
precache: false
# Custom output
output:
formats:
- name: netlify_redirects
mediatype: text/plain
extension: ""
- name: netlify_headers
mediatype: text/plain
extension: ""
# HTTP headers
headers:
# Security
- path: /*
headers:
- key: X-Frame-Options
value: SAMEORIGIN
- key: X-XSS-Protection
value: 1; mode=block
- key: X-Content-Type-Options
value: nosniff
- key: Strict-Transport-Security
value: max-age=31536000; includeSubDomains; preload
# Assets
- path: /favicon*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /logo*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /icon*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /assets/*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /images/*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /videos/*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /styles/*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /css/*
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: "/*.css"
headers:
- key: Cache-Control
value: public, max-age=31536000
- path: /fonts/*
headers:
- key: Cache-Control
value: public, max-age=31536000
# Scripts
- path: /javascript/*
headers:
- key: Cache-Control
value: private, max-age=31536000
- path: /js/*
headers:
- key: Cache-Control
value: private, max-age=31536000
- path: "/*.js"
headers:
- key: Cache-Control
value: private, max-age=31536000
# Service Worker
- path: /serviceworker.js
headers:
- key: Cache-Control
value: private, max-age=31536000
- path: /manifest.webmanifest
headers:
- key: Content-Type
value: application/manifest+json
- key: Cache-Control
value: private, max-age=31536000
# Admin
- path: /admin/*
headers:
- key: Cache-Control
value: "no-cache, no-store, must-revalidate, max-age=0"
- key: Content-Security-Policy
value: "default-src *; style-src * 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: 'unsafe-inline' blob: *; connect-src * 'unsafe-inline'; frame-src *; font-src * data: 'unsafe-inline';"
- path: /.netlify/*
headers:
- key: Cache-Control
value: "no-cache, no-store, must-revalidate, max-age=0"
- key: Content-Security-Policy
value: "default-src *; style-src * 'unsafe-inline'; script-src * 'unsafe-inline' 'unsafe-eval'; img-src * data: 'unsafe-inline' blob: *; connect-src * 'unsafe-inline'; frame-src *; font-src * data: 'unsafe-inline';"