github
/
nginxconfig.io
mirror of https://github.com/digitalocean/nginxconfig.io
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Referrer-Policy, Content-Security-Policy

pull/12/head
Szekeres Bálint 2018-02-23 01:40:17 +01:00
parent abae124a93
commit e088698bec
4 changed files with 86 additions and 39 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
README.md
View File

@ -27,6 +27,11 @@ Online nginx configuration generator.
* … * …
* unified (`nginx.conf`) / modularized file structure (ideal for multi-domain environment) * unified (`nginx.conf`) / modularized file structure (ideal for multi-domain environment)
* security headers * security headers
* `X-Frame-Options`
* `X-XSS-Protection`
* `X-Content-Type-Options`
* `Referrer-Policy`
* `Content-Security-Policy`
* `worker_processes` * `worker_processes`
* `user` * `user`
* `pid` * `pid`

9
public/assets/js/app.js
View File

@ -58,6 +58,9 @@
file_structure: 'unified', file_structure: 'unified',
referrer_policy: 'no-referrer-when-downgrade',
content_security_policy: 'default-src * \'unsafe-eval\' \'unsafe-inline\'',
worker_processes: 'auto', worker_processes: 'auto',
user: 'www-data', user: 'www-data',
pid: '/run/nginx.pid', pid: '/run/nginx.pid',
@ -270,8 +273,12 @@
return $scope.isPHP() && $scope.data.wordpress; return $scope.isPHP() && $scope.data.wordpress;
}; };
$scope.isCSP = function() {
return !!$scope.data.content_security_policy;
};
$scope.isAccessLog = function() { $scope.isAccessLog = function() {
return $scope.data.access_log; return !!$scope.data.access_log;
}; };
$scope.isGzip = function() { $scope.isGzip = function() {

53
public/index.html
View File

@ -125,20 +125,21 @@
</div> </div>
</div> </div>
</div> </div>
<div class="form-check"> </div>
</div>
<div class="card">
<div class="card-body">
<div class="form-check mb-2">
<input class="form-check-input" type="checkbox" id="index_html" ng-model="data.index_html"> <input class="form-check-input" type="checkbox" id="index_html" ng-model="data.index_html">
<label class="form-check-label" for="index_html"> <label class="form-check-label" for="index_html">
<span tooltips tooltip-template="Pass unhandled requests to index.html.<br><br><i>Angular, React, Vue.js, Ember.js</i>...">index.html <small>handler</small></span> <span tooltips tooltip-template="Pass unhandled requests to index.html.<br><br><i>Angular, React, Vue.js, Ember.js</i>...">index.html <small>handler</small></span>
</label> </label>
</div> </div>
</div>
</div>
<div class="card">
<div class="card-body">
<div class="form-group"> <div class="form-group">
<label class="form-label"> <div class="input-group" tooltips tooltip-template="PHP-FPM via TCP or unix socket.">
<span tooltips tooltip-template="PHP-FPM via TCP or unix socket.">PHP</span> <div class="input-group-prepend">
</label> <div class="input-group-text">PHP</div>
</div>
<select class="form-control" ng-model="data.php"> <select class="form-control" ng-model="data.php">
<option value="off">disabled</option> <option value="off">disabled</option>
<option value="tcp">TCP</option> <option value="tcp">TCP</option>
@ -149,13 +150,17 @@
<option value="7.3">7.3 socket</option> <option value="7.3">7.3 socket</option>
</select> </select>
</div> </div>
<div class="form-check" ng-if="isPHP()"> </div>
<div class="form-subgroup" ng-if="isPHP()">
<div class="form-check">
<input class="form-check-input" type="checkbox" id="index_php" ng-model="data.index_php"> <input class="form-check-input" type="checkbox" id="index_php" ng-model="data.index_php">
<label class="form-check-label" for="index_php"> <label class="form-check-label" for="index_php">
<span tooltips tooltip-template="Pass unhandled requests to index.php.<br><br><i>Laravel, Lumen, Symfony, Zend, CodeIgniter, Yii, CakePHP, Slim...</i>">index.php <small>handler</small></span> <span tooltips tooltip-template="Pass unhandled requests to index.php.<br><br><i>Laravel, Lumen, Symfony, Zend, CodeIgniter, Yii, CakePHP, Slim...</i>">index.php <small>handler</small></span>
</label> </label>
</div> </div>
<div class="form-check" ng-if="isPHP()"> </div>
<div class="form-subgroup" ng-if="isPHP()">
<div class="form-check">
<input class="form-check-input" type="checkbox" id="wordpress" ng-model="data.wordpress"> <input class="form-check-input" type="checkbox" id="wordpress" ng-model="data.wordpress">
<label class="form-check-label" for="wordpress"> <label class="form-check-label" for="wordpress">
<span tooltips tooltip-template="WordPress security rules and login limiting <i>(if enabled)</i>.">WordPress</span> <span tooltips tooltip-template="WordPress security rules and login limiting <i>(if enabled)</i>.">WordPress</span>
@ -163,15 +168,19 @@
</div> </div>
</div> </div>
</div> </div>
</div>
<div class="card"> <div class="card">
<div class="card-body"> <div class="card-body">
<label class="form-label">File structure</label> <label class="form-label">File structure</label>
<div class="form-subgroup">
<div class="form-check"> <div class="form-check">
<input class="form-check-input" type="radio" id="unified" ng-model="data.file_structure" value="unified"> <input class="form-check-input" type="radio" id="unified" ng-model="data.file_structure" value="unified">
<label class="form-check-label" for="unified"> <label class="form-check-label" for="unified">
<span tooltips tooltip-template="Combine configuration to a single file.<br><br><i>(if possible)</i>">unified</span> <span tooltips tooltip-template="Combine configuration to a single file.<br><br><i>(if possible)</i>">unified</span>
</label> </label>
</div> </div>
</div>
<div class="form-subgroup">
<div class="form-check"> <div class="form-check">
<input class="form-check-input" type="radio" id="modularized" ng-model="data.file_structure" value="modularized"> <input class="form-check-input" type="radio" id="modularized" ng-model="data.file_structure" value="modularized">
<label class="form-check-label" for="modularized"> <label class="form-check-label" for="modularized">
@ -180,11 +189,33 @@
</div> </div>
</div> </div>
</div> </div>
</div>
<div class="card">
<div class="card-body">
<div class="form-group">
<label class="form-label"><code tooltips tooltip-template="Referrer Policy is a new header that allows a site to control how much information the browser includes with navigations away from a document and should be set by all sites.">Referrer-Policy</code></label>
<select class="form-control form-control-sm" ng-model="data.referrer_policy">
<option value="no-referrer">no-referrer</option>
<option value="no-referrer-when-downgrade">no-referrer-when-downgrade</option>
<option value="origin">origin</option>
<option value="origin-when-cross-origin">origin-when-cross-origin</option>
<option value="same-origin">same-origin</option>
<option value="strict-origin">strict-origin</option>
<option value="strict-origin-when-cross-origin">strict-origin-when-cross-origin</option>
<option value="unsafe-url">unsafe-url</option>
</select>
</div>
<div class="form-group">
<label class="form-label"><code tooltips tooltip-template="Content Security Policy is an effective measure to protect your site from XSS attacks. By whitelisting sources of approved content, you can prevent the browser from loading malicious assets.">Content-Security-Policy</code></label>
<input type="text" class="form-control form-control-sm" ng-model="data.content_security_policy">
</div>
</div>
</div>
<div class="card"> <div class="card">
<div class="card-body"> <div class="card-body">
<div class="form-group"> <div class="form-group">
<label class="form-label"><code tooltips tooltip-template="Sets the maximum number of simultaneous connections that can be opened by a worker process.">worker_processes</code></label> <label class="form-label"><code tooltips tooltip-template="Sets the maximum number of simultaneous connections that can be opened by a worker process.">worker_processes</code></label>
<select class="form-control" ng-model="data.worker_processes"> <select class="form-control form-control-sm" ng-model="data.worker_processes">
<option value="auto">auto</option> <option value="auto">auto</option>
<option value="1">1</option> <option value="1">1</option>
<option value="2">2</option> <option value="2">2</option>

4
public/templates/conf/_general.conf.html
View File

@ -3,6 +3,10 @@ add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-XSS-Protection "1; mode=block" always; add_header X-XSS-Protection "1; mode=block" always;
add_header X-Content-Type-Options "nosniff" always; add_header X-Content-Type-Options "nosniff" always;
add_header X-UA-Compatible "IE=Edge" always; add_header X-UA-Compatible "IE=Edge" always;
add_header Referrer-Policy "{{ data.referrer_policy }}" always;<!--
✔ CSP--><span ng-if="isCSP()">
add_header Content-Security-Policy "{{ data.content_security_policy }}" always;</span>
# . files # . files
location ~ /\. { location ~ /\. {