zelo72
/
documentation
mirror of https://github.com/mastodon/documentation
1
0
Fork 0
Code Issues 6 Releases Wiki Activity

Merge pull request #204 from nolanlawson/fwenzel-patch-1 

Add default CSP (take 2)
This commit is contained in:
Darius Kazemi 2017-05-08 11:16:49 -07:00 committed by GitHub
parent fbe87aab22 8a57435b88
commit 5b91212370
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
Running-Mastodon/Production-guide.md
View File

@ -12,7 +12,9 @@ The following HTTP headers are already set internally and should not be set agai
## Nginx
Regardless of whether you go with the Docker approach or not, here is an example Nginx server configuration:
Regardless of whether you go with the Docker approach or not, here is an example Nginx server configuration.
At a minimum, you'll want to replace any occurrence of `example.com` with your actual hostname, and `/home/mastodon/live/public` with the location of your actual mastodon `public/` directory.
```nginx
map $http_upgrade $connection_upgrade {
@ -59,6 +61,7 @@ server {
gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
add_header Strict-Transport-Security "max-age=31536000";
add_header Content-Security-Policy "style-src 'self' 'unsafe-inline'; script-src 'self'; object-src 'self'; img-src data: https:; media-src data: https:; connect-src 'self' wss://example.com; upgrade-insecure-requests";
location / {
try_files $uri @proxy;