diff options
| author | yum <yum.food.vr@gmail.com> | 2025-10-16 14:51:18 -0700 |
|---|---|---|
| committer | yum <yum.food.vr@gmail.com> | 2025-10-28 17:19:38 -0700 |
| commit | a91dd1d55550d36cda17f8acd777d07d7e8d83ee (patch) | |
| tree | e66fcd9a8aa61ef4eb11d06f07554797c8cf0cfe /etc | |
| parent | becdbeeefac4fbf4b75ff5052502945f5843ddfb (diff) | |
add basic encryption. note that keys are publicly available
the intent is just to prevent dragnet snooping
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/nginx/sites-available/yummers.dev | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/etc/nginx/sites-available/yummers.dev b/etc/nginx/sites-available/yummers.dev index c1162a6..5eb4fef 100644 --- a/etc/nginx/sites-available/yummers.dev +++ b/etc/nginx/sites-available/yummers.dev @@ -51,6 +51,12 @@ server { add_header Access-Control-Allow-Origin "*" always; } + # Key files must never be cached client-side + location ~ \.key$ { + add_header Cache-Control "no-cache, no-store, must-revalidate" always; + add_header Access-Control-Allow-Origin "*" always; + } + # Segment files (.ts) can be cached - they're immutable location ~ \.ts$ { add_header Cache-Control "public, max-age=30" always; |