From 88c388d6771a364fe18da042b4546663eace81b2 Mon Sep 17 00:00:00 2001
From: inference <admin@inferencium.net>
Date: Sun, 7 Apr 2024 20:33:23 +0000
Subject: [PATCH] Add system "xa000-1" configuration file "Nginx - Include -
 Header - Security - Content-Security-Policy" version "1.0.0-beta.1"

This configuration file allows non-duplicate inclusion of CSP in server
configuration files without requiring it as part of the base security
headers.
---
 xa000-1/nginx/include/header-security-csp.conf | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100644 xa000-1/nginx/include/header-security-csp.conf

diff --git a/xa000-1/nginx/include/header-security-csp.conf b/xa000-1/nginx/include/header-security-csp.conf
new file mode 100644
index 0000000..25ffbdb
--- /dev/null
+++ b/xa000-1/nginx/include/header-security-csp.conf
@@ -0,0 +1,10 @@
+# Inferencium - xa000-1
+# Nginx - Configuration - Include - Header - Security - Content-Security-Policy
+# Version: 1.0.0-beta.1
+
+# Copyright 2024 Jake Winters
+# SPDX-License-Identifier: BSD-3-Clause
+
+
+add_header					Content-Security-Policy "default-src 'self'; img-src 'self'; media-src 'self'; object-src 'none'; script-src 'none'; connect-src 'none'; frame-src 'none'; style-src 'self' 'unsafe-inline'; font-src 'self'";
+