From a14b87baf25e8a4747318efa7a7b52ad04966af7 Mon Sep 17 00:00:00 2001
From: redmatrix <git@macgirvin.com>
Date: Mon, 8 Feb 2016 14:48:11 -0800
Subject: make yet another recommended security header optional - this time
 because of piwik. Personally I think if you want to track people you really
 don't understand this project and its history, but whatever....

---
 view/fr/htconfig.tpl | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'view/fr')

diff --git a/view/fr/htconfig.tpl b/view/fr/htconfig.tpl
index 5171fd327..799cdaa71 100644
--- a/view/fr/htconfig.tpl
+++ b/view/fr/htconfig.tpl
@@ -37,6 +37,15 @@ $a->config['system']['baseurl'] = '{{$siteurl}}';
 $a->config['system']['sitename'] = "Hubzilla";
 $a->config['system']['location_hash'] = '{{$site_id}}';
 
+
+// These lines set additional security headers to be sent with all responses
+// You may wish to set transport_security_header to 0 if your server already sends
+// this header. content_security_policy may need to be disabled if you wish to
+// run the piwik analytics plugin or include other offsite resources on a page
+
+$a->config['system']['transport_security_header'] = 1;
+$a->config['system']['content_security_policy'] = 1;
+
 // Vos choix sont REGISTER_OPEN, REGISTER_APPROVE, ou REGISTER_CLOSED.
 // Soyez certains de créer votre compte personnel avant de déclarer
 // votre site REGISTER_CLOSED. 'register_text' (si vous décider de l'utiliser) 
-- 
cgit v1.2.3