diff --git a/config/nginx.conf.template b/config/nginx.conf.template
index acd5c2f..2adac2d 100644
--- a/config/nginx.conf.template
+++ b/config/nginx.conf.template
@@ -12,7 +12,7 @@ server {
sendfile off;
charset utf-8;
-
+
server_tokens off;
client_max_body_size 32m;
@@ -57,19 +57,21 @@ server {
index index.html;
expires -1;
- # Media: images, icons, video, audio, HTC
- location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|mp3|ogg|ogv|webm|htc|woff2|woff|ttf)$ {
- expires 1M;
- access_log off;
- # max-age must be in seconds
- add_header Cache-Control "max-age=2629746, public";
- }
- # CSS and Javascript
- location ~* \.(?:css|js)$ {
- expires 1y;
- access_log off;
- add_header Cache-Control "max-age=31556952, public";
- }
+ add_header Content-Security-Policy "frame-ancestors 'none'; default-src 'self'; script-src 'self'; style-src 'unsafe-inline' 'self' data:; font-src 'self' data:; img-src 'self' data:;";
+
+ # Media: images, icons, video, audio, HTC
+ location ~* \.(?:jpg|jpeg|gif|png|ico|cur|gz|svg|svgz|mp4|mp3|ogg|ogv|webm|htc|woff2|woff|ttf)$ {
+ expires 1M;
+ access_log off;
+ # max-age must be in seconds
+ add_header Cache-Control "max-age=2629746, public";
+ }
+ # CSS and Javascript
+ location ~* \.(?:css|js)$ {
+ expires 1y;
+ access_log off;
+ add_header Cache-Control "max-age=31556952, public";
+ }
ssi on;
set $flUrl "${LKRP_FL_URL}";
diff --git a/html/index.html b/html/index.html
index c6078a0..45e9a1d 100644
--- a/html/index.html
+++ b/html/index.html
@@ -13,7 +13,7 @@