-
Notifications
You must be signed in to change notification settings - Fork 0
/
netlify.toml
54 lines (42 loc) · 2.28 KB
/
netlify.toml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
# Netlify deployment settings.
#
# “publish” is the directory to publish (relative to root of your repo),
# “command” is your build command,
# (not-in-use) “base” is directory to change to before starting build. if you set base:
# that is where we will look for package.json/.nvmrc/etc not repo root!
# See: https://www.netlify.com/docs/netlify-toml-reference/
# See: https://www.netlify.com/docs/continuous-deployment/#deploy-contexts
# Variables: https://www.netlify.com/docs/continuous-deployment/#build-environment-variables
# See: https://www.netlify.com/docs/redirects/
# See: https://gohugo.io/hosting-and-deployment/hosting-on-netlify/
# BUILD
[build]
publish = "docs"
command = "yarn run deploy -b $URL"
[build.production.environment]
HUGO_VERSION = "0.37.1"
HUGO_ENV = "production"
[context.deploy-preview]
command = "yarn run deploy -b $DEPLOY_PRIME_URL"
[context.deploy-preview.environment]
HUGO_VERSION = "0.37.1"
HUGO_ENV = "development"
[context.branch-deploy]
command = "yarn run deploy -b $DEPLOY_PRIME_URL"
[context.branch-deploy.environment]
HUGO_VERSION = "0.37.1"
HUGO_ENV = "development"
# HEADERS
[[headers]]
# For all requests
for = "/*"
[headers.values]
# Security headers
X-Frame-Options = "DENY"
X-XSS-Protection = "1; mode=block"
X-Content-Type-Options = "nosniff"
# For HSTS
Strict-Transport-Security = "max-age=31536000; includeSubDomains; preload"
# Content-Security-Policy = "frame-ancestors 'none'; default-src 'none'; img-src 'self' https://res.cloudinary.com/youtuberis/ https://referrer.disqus.com/ https://*.disquscdn.com/; connect-src 'self' https://spreadsheets.google.com/feeds/list https://disqus.com/api/3.0/threads/set.json https://cdn.materialdesignicons.com; object-src 'none'; frame-src https://disqus.com/; style-src 'self' https://cdn.materialdesignicons.com https://*.disquscdn.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://youtuberis.disqus.com https://referrer.disqus.com https://disqus.com https://*.disquscdn.com; font-src 'self' data: https://cdn.materialdesignicons.com/;"
# HTTP/2 Push assets
Link = "</styles.css>; rel=preload; as=stylesheet,</loader.css>; rel=preload; as=stylesheet,</scripts.js>; rel=preload; as=script,</sw.js>; rel=preload; as=script"