From 6774f72287df36580148a70cc18b29eeb67b574a Mon Sep 17 00:00:00 2001
From: Elian Loraux <elian.loraux@tetras-libre.fr>
Date: Wed, 16 Apr 2025 13:24:53 +0200
Subject: [PATCH] eras the hardening for xframe

---
 traefik3.yml | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/traefik3.yml b/traefik3.yml
index d56b990..3e71abc 100644
--- a/traefik3.yml
+++ b/traefik3.yml
@@ -11,9 +11,15 @@ services:
       - "traefik.http.routers.${NAME}.rule=${HOST}"
       - "traefik.http.routers.${NAME}.tls.certresolver=myresolver"
       - "traefik.http.routers.${NAME}.entrypoints=web,websecure"
-      - "traefik.http.routers.${NAME}.middlewares=hardening@docker"
       - "traefik.http.services.${NAME}.loadbalancer.server.port=9000"
-
+      - "traefik.http.middlewares.hardening-${NAME}.headers.sslredirect=true"
+      - "traefik.http.middlewares.hardening-${NAME}.headers.forceSTSHeader=true"
+      - "traefik.http.middlewares.hardening-${NAME}.headers.stsIncludeSubdomains=true"
+      - "traefik.http.middlewares.hardening-${NAME}.headers.stsSeconds=15552000"
+      - "traefik.http.middlewares.hardening-${NAME}.headers.stsPreload=true"
+      - "traefik.http.middlewares.hardening-${NAME}.headers.referrerPolicy=no-referrer"
+      - "traefik.http.routers.${NAME}.middlewares=hardening-${NAME}@docker"
+      
 networks:
   traefik:
     external: true
-- 
GitLab