diff options
| author | William Pitcock <nenolod@dereferenced.org> | 2018-11-11 06:37:18 +0000 |
|---|---|---|
| committer | William Pitcock <nenolod@dereferenced.org> | 2018-11-11 06:38:50 +0000 |
| commit | 69f5dfcfb3f2b498e1f9957244f0896b6f9d5c2a (patch) | |
| tree | 82174a224c365bf5bbb6a91d7e3dfc84d4bbf8d3 | |
| parent | 057a9017b3852f10e76165b70b907d9af458c301 (diff) | |
| download | pleroma-69f5dfcfb3f2b498e1f9957244f0896b6f9d5c2a.tar.gz | |
config: add default parameters for CSPPlug
| -rw-r--r-- | config/config.exs | 5 | ||||
| -rw-r--r-- | config/config.md | 5 |
2 files changed, 10 insertions, 0 deletions
diff --git a/config/config.exs b/config/config.exs index e82c490e3..ad8653025 100644 --- a/config/config.exs +++ b/config/config.exs @@ -176,6 +176,11 @@ config :pleroma, :suggestions, limit: 23, web: "https://vinayaka.distsn.org/?{{host}}+{{user}}" +config :pleroma, :csp, + enabled: true, + sts: false, + sts_max_age: 31_536_000 + config :cors_plug, max_age: 86_400, methods: ["POST", "PUT", "DELETE", "GET", "PATCH", "OPTIONS"], diff --git a/config/config.md b/config/config.md index 51172fc4d..e08d206b6 100644 --- a/config/config.md +++ b/config/config.md @@ -80,3 +80,8 @@ This section is used to configure Pleroma-FE, unless ``:managed_config`` in ``:i * ``unfollow_blocked``: Whether blocks result in people getting unfollowed * ``outgoing_blocks``: Whether to federate blocks to other instances * ``deny_follow_blocked``: Whether to disallow following an account that has blocked the user in question + +## :csp +* ``enabled``: Whether the managed content security policy is enabled +* ``sts``: Whether to additionally send a `Strict-Transport-Security` header +* ``sts_max_age``: The maximum age for the `Strict-Transport-Security` header if sent |