NGINX hederi

#For WordPress
server_tokens off;
add_header X-Frame-Options "DENY";
add_header X-Content-Type-Options "nosniff";
add_header X-XSS-Protection "1; mode=block";
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";
add_header Referrer-Policy "strict-origin-when-cross-origin";
add_header Public-Key-Pins 'pin-sha256="base64+primary=="; pin-sha256="base64+backup=="; max-age=5184000; includeSubDomains' always;
add_header Content-Security-Policy "default-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' v0.wordpress.com; img-src 'self' 'unsafe-inline' ps.w.org; style-src 'self' 'unsafe-inline'; font-src 'self' data: 'application' fonts.gstatic.com; object-src 'self'; frame-src 'self';";

Lai uzģenerētu kodu priekš integrity parametra ismanto šo komandu

curl -s <URL> | \
openssl dgst -sha384 -binary | \
openssl base64 -A

Šeit var palasīt vairāk par hederiem