wpugph · eabquina · Apr 19, 2020 · Apr 19, 2020 · Apr 19, 2020
diff --git a/web/wp-content/themes/dctx2/assets/sass/views/_blog.scss b/web/wp-content/themes/dctx2/assets/sass/views/_blog.scss
@@ -9,7 +9,7 @@ article.post {
     box-shadow: 0px 5px 20px rgba(0, 0, 0, 0.1);
 }
 
-time a,
+time,
 .author a,
 .tags-links a {
 	text-decoration: underline;

diff --git a/web/wp-content/themes/dctx2/functions.php b/web/wp-content/themes/dctx2/functions.php
@@ -239,3 +239,24 @@ function dctx_widgets_init() {
  * Scaffolding Library.
  */
 require get_template_directory() . '/inc/scaffolding.php';
+
+/**
+ * Add security headers for Nginx based sites
+ *
+ * @param [type] $headers add security headers as array.
+ *
+ * @return array
+ */
+function additional_securityheaders( $headers ) {
+	if ( ! is_admin() ) {
+		$headers['Referrer-Policy']         = 'no-referrer-when-downgrade';
+		$headers['X-Content-Type-Options']  = 'nosniff';
+		$headers['XX-XSS-Protection']       = '1; mode=block';
+		$headers['Feature-Policy']          = 'geolocation "none" ; camera "none"';
+		$headers['X-Frame-Options']         = 'SAMEORIGIN';
+		$headers['Content-Security-Policy'] = "script-src-elem 'self' 'unsafe-inline' https://www.google.com https://js-agent.newrelic.com https://bam.nr-data.net https://www.gstatic.com https://cdn.datatables.net; script-src 'unsafe-inline' 'unsafe-eval' https://www.google.com https://fonts.googleapis.com https://cdnjs.cloudflare.com https://www.gstatic.com https://js-agent.newrelic.com/";
+	}
+
+	return $headers;
+}
+add_filter( 'wp_headers', 'additional_securityheaders' );
diff --git a/web/wp-content/themes/dctx2/style.css b/web/wp-content/themes/dctx2/style.css
diff --git a/web/wp-content/themes/dctx2/style.min.css b/web/wp-content/themes/dctx2/style.min.css