roles/nginx: Add HTTP headers for web application security

See: https://github.com/h5bp/server-configs-nginx/blob/master/h5bp/directive-only/extra-security.conf See: https://www.owasp.org/index.php/List_of_useful_HTTP_headers Signed-off-by: Alan Orth <alan.orth@gmail.com>
2015-01-24 13:05:42 +03:00
parent 0dc4d3f147
commit 4ea152bf51
3 changed files with 21 additions and 1 deletions
--- a/roles/nginx/tasks/main.yml
+++ b/roles/nginx/tasks/main.yml
@ -11,9 +11,10 @@
  apt: pkg=nginx update_cache=yes state=latest
  tags: nginx

- name: Copy nginx config
+- name: Copy nginx configs
  copy: src={{ item }} dest=/etc/nginx/{{ item }} mode=0644 owner=root group=root
  with_items:
+    - extra-security.conf
    - nginx.conf
  notify:
    - reload nginx