Revert "http security headers"

This reverts commit 56a56e7.
girleffect · Apr 26, 2024 · 8c68189 · 8c68189
1 parent 0cceb69
commit 8c68189
Showing 1 changed file with 0 additions and 6 deletions.
diff --git a/nginx/conf.d/django.conf b/nginx/conf.d/django.conf
@@ -44,12 +44,6 @@ server {
         proxy_set_header X-Forwarded-Ssl "";
         proxy_pass http://gunicorn;
     }
-
-    add_header X-Frame-Options SAMEORIGIN always;
-    add_header X-Content-Type-Options nosniff always;
-    add_header Strict-Transport-Security "max-age=31536000" always;
-    add_header Content-Security-Policy "default-src https: 'self';" always;
-    add_header Referrer-Policy "same-origin" always;
 }
 
 # redirect all requests with the prefix www. to the site without www