Skip to content
Snippets Groups Projects
Verified Commit 999ad37b authored by psy's avatar psy
Browse files

add security.txt

parent cd5d0b82
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
README.md
+ 6
0
View file @ 999ad37b
...@@ -35,6 +35,12 @@ force_ssl: True ...@@ -35,6 +35,12 @@ force_ssl: True
# generate a self signed certificate as default ssl cert # generate a self signed certificate as default ssl cert
snakeoil_default: False snakeoil_default: False
# if set, nginx will render the content at /.well-known/security.txt
# see https://www.rfc-editor.org/rfc/rfc9116 for valid fields
security.txt: |
Contact: mailto:security@example.com
Expires: 2024-04-20T23:42:00.000Z
# install php-fpm, setup a php-handler upstream and copy a php location snippet to include in configs # install php-fpm, setup a php-handler upstream and copy a php location snippet to include in configs
# either "False", "True" or a dict *phpconfig*, see below for definition # either "False", "True" or a dict *phpconfig*, see below for definition
php: False php: False
......
templates/vhost.conf.j2
+ 7
0
View file @ 999ad37b
...@@ -113,6 +113,13 @@ server { ...@@ -113,6 +113,13 @@ server {
{% endif %} {% endif %}
{% if nginx.security_txt is defined %}
location /.well-known/security.txt {
add_header Content-Type text/plain;
return 200 "{{ nginx.security_txt | replace('\n', '\\n') }}";
}
{% endif %}
{% if vhost.auth.enable %} {% if vhost.auth.enable %}
auth_basic "restricted area"; auth_basic "restricted area";
auth_basic_user_file {{ vhost.auth.path }}; auth_basic_user_file {{ vhost.auth.path }};
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment

Impressum - Datenschutzerklärung