-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsvg.test.conf
68 lines (58 loc) · 2.36 KB
/
svg.test.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName svg.test
ServerAlias base.svg.test base_a.svg.test base_b.svg.test
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName nocsp.svg.test
ServerAlias nocsp_a.svg.test
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName xfo1.svg.test
ServerAlias xfo1_a.svg.test xfo1_b.svg.test
Header set X-Frame-Options "DENY"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName xfo2.svg.test
ServerAlias xfo2_a.svg.test xfo2_b.svg.test
Header set X-Frame-Options "SAMEORIGIN"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName csp0.svg.test
ServerAlias csp0_a.svg.test csp0_b.svg.test
Header set Content-Security-Policy "default-src 'none'; style-src 'self';"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName csp1.svg.test
ServerAlias csp1_a.svg.test csp1_b.svg.test
Header set Content-Security-Policy "default-src 'none'; script-src 'self'; style-src 'self'; img-src 'self';"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName csp2.svg.test
ServerAlias csp2_a.svg.test csp2_b.svg.test
Header set Content-Security-Policy "default-src 'none'; script-src 'self'; style-src 'self'; img-src 'self'; object-src 'self';"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName csp3.svg.test
ServerAlias csp3_a.svg.test csp3_b.svg.test
Header set Content-Security-Policy "default-src 'none'; script-src 'self'; style-src 'self'; img-src 'self'; frame-src 'self';"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName csp4.svg.test
ServerAlias csp4_a.svg.test csp4_b.svg.test
Header set Content-Security-Policy "default-src 'none'; script-src 'self'; style-src 'self'; img-src 'self'; object-src 'self'; frame-src 'self';"
</VirtualHost>
<VirtualHost *:80>
DocumentRoot /var/www/svg.test
ServerName csp5.svg.test
ServerAlias csp5_a.svg.test csp5_b.svg.test
Header set Content-Security-Policy "default-src 'none'; script-src 'self' http://*.svg.test; style-src 'self' http://*.svg.test; img-src 'self' data: http://*.svg.test; object-src 'self' data: http://*.svg.test; frame-src 'self' data: http://*.svg.test;"
</VirtualHost>