Implement security HTTP headers' middleware

2020-09-04 00:27:06 -04:00
parent d4293d3c59
commit 1823318e51
5 changed files with 22 additions and 8 deletions
--- a/roles/traefik/templates/security.yml.j2
+++ b/roles/traefik/templates/security.yml.j2
@@ -0,0 +1,15 @@
+tls:
+  options:
+    default:
+      minVersion: VersionTLS12
+
+http:
+  middlewares:
+    securehttps:
+      headers:
+        frameDeny: true
+        sslRedirect: true
+        browserXssFilter: true
+        contentTypeNosniff: true
+        stsPreload: {{ traefik_hsts_preload }}
+        stsSeconds: {{ traefik_hsts_seconds }}