2026-02-15 22:41:50 +01:00
|
|
|
tls:
|
|
|
|
|
options:
|
|
|
|
|
default:
|
|
|
|
|
minVersion: VersionTLS12
|
|
|
|
|
cipherSuites:
|
|
|
|
|
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
|
|
|
|
|
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
|
|
|
|
|
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
|
|
|
|
|
- TLS_AES_128_GCM_SHA256
|
|
|
|
|
- TLS_AES_256_GCM_SHA384
|
|
|
|
|
- TLS_CHACHA20_POLY1305_SHA256
|
|
|
|
|
curvePreferences:
|
|
|
|
|
- CurveP521
|
|
|
|
|
- CurveP384
|
|
|
|
|
sniStrict: true
|
|
|
|
|
|
|
|
|
|
http:
|
|
|
|
|
middlewares:
|
|
|
|
|
security-headers:
|
|
|
|
|
headers:
|
|
|
|
|
stsSeconds: 31536000
|
|
|
|
|
stsIncludeSubdomains: true
|
|
|
|
|
stsPreload: true
|
|
|
|
|
forceSTSHeader: true
|
|
|
|
|
customFrameOptionsValue: "SAMEORIGIN"
|
|
|
|
|
browserXssFilter: true
|
|
|
|
|
contentTypeNosniff: true
|
|
|
|
|
referrerPolicy: "strict-origin-when-cross-origin"
|
|
|
|
|
customResponseHeaders:
|
|
|
|
|
Permissions-Policy: "camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), accelerometer=(), gyroscope=()"
|
|
|
|
|
X-Content-Type-Options: "nosniff"
|
|
|
|
|
X-Frame-Options: "SAMEORIGIN"
|
2026-04-10 19:47:10 +02:00
|
|
|
no-index:
|
|
|
|
|
headers:
|
|
|
|
|
customResponseHeaders:
|
|
|
|
|
X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex"
|
2026-02-15 22:41:50 +01:00
|
|
|
rate-limit:
|
|
|
|
|
rateLimit:
|
|
|
|
|
average: 100
|
|
|
|
|
burst: 50
|
|
|
|
|
period: 1s
|
|
|
|
|
api-rate-limit:
|
|
|
|
|
rateLimit:
|
|
|
|
|
average: 30
|
|
|
|
|
burst: 15
|
|
|
|
|
period: 1s
|
