[Website] Set security-focused page headers

- Sets X-Frame-Options to SAMEORIGIN
- Sets Strict-Transport-Security to:
  max-age=31536000; includeSubDomains; preload
This commit is contained in:
Noel Quiles 2020-02-25 19:11:47 -05:00
parent ff4674a49c
commit 806e799945
No known key found for this signature in database
GPG Key ID: 37F007384AEFA6AA
2 changed files with 4 additions and 0 deletions

View File

@ -112,3 +112,4 @@ end
# Netlify redirects/headers
proxy '_redirects', 'netlify-redirects', ignore: true
proxy '_headers', 'netlify-headers', ignore: true

View File

@ -0,0 +1,3 @@
/*
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN