summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorbrian m. carlson <sandals@crustytoothpaste.net>2021-07-14 21:41:24 +0000
committerbrian m. carlson <sandals@crustytoothpaste.net>2021-07-14 21:41:24 +0000
commit9024e920b1ba7a68b766abca41a28cdd75a648ec (patch)
tree6f64e3d13060661e3f7c92ebd7f2cf16ee702c83
parent4af5765dc282244e918fa1e2a7756bafda6aa5e1 (diff)
templates/http: block FLoC
There's no reason we should enable targeted advertising in any way. Block FLoC. Signed-off-by: brian m. carlson <sandals@crustytoothpaste.net>
-rw-r--r--modules/crustytoothpaste/templates/role/http/website/site.erb1
1 files changed, 1 insertions, 0 deletions
diff --git a/modules/crustytoothpaste/templates/role/http/website/site.erb b/modules/crustytoothpaste/templates/role/http/website/site.erb
index 217ecfa..0e7d076 100644
--- a/modules/crustytoothpaste/templates/role/http/website/site.erb
+++ b/modules/crustytoothpaste/templates/role/http/website/site.erb
@@ -117,6 +117,7 @@
<%- end -%>
Header add Referrer-Policy "no-referrer, strict-origin-when-cross-origin"
Header add X-Xss-Protection "1; mode=block"
+ Header add Permissions-Policy "interest-cohort=()"
# Possible values include: debug, info, notice, warn, error, crit,
# alert, emerg.