nginx 配置
server{
listen xxx;
add_header 'Referrer-Policy' 'same-origin';
add_header 'X-Frame-Options' 'DENY';
add_header 'X-Content-Type-Options' 'nosniff';
add_header 'X-XSS-Protection' '1; mode=block';
add_header 'Vary' 'Origin';
}