From 4db3c3f2d1868334e00ea8b4886bb732477a1965 Mon Sep 17 00:00:00 2001
From: inference <admin@inferencium.net>
Date: Sun, 7 Apr 2024 20:07:11 +0000
Subject: [PATCH] Add configuration file "Nginx - Include - Header - Security -
 Content-Security-Policy"

This configuration file allows non-duplicate inclusion of CSP in server
configuration files without requiring it as part of the base security
headers.
---
 nginx/include/header-security-csp.conf | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 nginx/include/header-security-csp.conf

diff --git a/nginx/include/header-security-csp.conf b/nginx/include/header-security-csp.conf
new file mode 100644
index 0000000..02cfb7d
--- /dev/null
+++ b/nginx/include/header-security-csp.conf
@@ -0,0 +1,10 @@
+# Inferencium - xa000-1
+# Nginx - Configuration - Include - Header - Security - Content-Security-Policy
+# Version: 0.1.0
+
+# Copyright 2024 Jake Winters
+# SPDX-License-Identifier: BSD-3-Clause
+
+
+add_header					Content-Security-Policy "default-src 'self'; img-src 'self'; media-src 'self'; object-src 'none'; script-src 'none'; connect-src 'none'; frame-src 'none'; style-src 'self' 'unsafe-inline'; font-src 'self'";
+