HTTP节点下增加CSP配置
add_header Content-Security-Policy "default-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src * data:; worker-src * blob:; font-src 'self' data:;";
add_header X-XSS-Protection "1; mode=block";
add_header X-Content-Type-Options nosniff;
add_header X-Frame-Options SAMEORIGIN;
映射上传目录,增加server节点
server {
listen 8000;
server_name localhost;
location / {
root /opt/upload (自定义的文件上传路径)
index index.html index.html
}
}
HTTP请求转发到另一个域名下的HTTPS请求
server {
listen 10443;
server_name localhost;
rewrite ^(.*) https://ip:port$1 permanent;
}