Skip to content

Commit a93380d

Browse files
scottmakestechscottmakestech
authored
Fix YouTube embed referrer policy for Apache httpd post (#2170)
1 parent 48a9f22 commit a93380d

3 files changed

Lines changed: 21 additions & 1 deletion

File tree

config/_default/server.toml

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -81,6 +81,16 @@ for = "/:lang/repository"
8181
# Cf https://github.com/letsencrypt/website/pull/976
8282
Referrer-Policy = "strict-origin"
8383

84+
[[headers]]
85+
for = "/2017/10/17/acme-support-in-apache-httpd"
86+
[headers.values]
87+
Referrer-Policy = "strict-origin-when-cross-origin"
88+
89+
[[headers]]
90+
for = "/2017/10/17/acme-support-in-apache-httpd/"
91+
[headers.values]
92+
Referrer-Policy = "strict-origin-when-cross-origin"
93+
8494
[[headers]]
8595
for = "/certs/*.pem"
8696
[headers.values]

content/en/post/2017-10-17-acme-support-in-apache-httpd.markdown

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ ACME support being built in to one of the world’s most popular Web servers, Ap
1515

1616
The Apache httpd ACME module is called mod_md. It’s currently in the [development version of httpd](https://svn.apache.org/viewvc/httpd/httpd/trunk/modules/md/) and a plan is being formulated to backport it to an httpd 2.4.x stable release. The mod_md code is also [available on GitHub](https://github.com/icing/mod_md).
1717

18-
<div style="text-align: center;"><iframe width="560" height="315" src="https://www.youtube-nocookie.com/embed/gNJUpzNNWMw?rel=0" style="border: none;" allowfullscreen></iframe></div>
18+
<div style="text-align: center;"><iframe width="560" height="315" src="https://www.youtube-nocookie.com/embed/gNJUpzNNWMw?rel=0" style="border: none;" referrerpolicy="strict-origin-when-cross-origin" allowfullscreen></iframe></div>
1919

2020
It’s also worth mentioning that the development version of Apache httpd now includes support for an [SSLPolicy directive](https://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslpolicy). Properly configuring TLS has traditionally involved making a large number of complex choices. With the SSLPolicy directive, admins simply select a modern, intermediate, or old TLS configuration, and sensible choices will be made for them.
2121

netlify.toml

Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -99,6 +99,16 @@ for = "/:lang/repository"
9999
# Cf https://github.com/letsencrypt/website/pull/976
100100
Referrer-Policy = "strict-origin"
101101

102+
[[headers]]
103+
for = "/2017/10/17/acme-support-in-apache-httpd"
104+
[headers.values]
105+
Referrer-Policy = "strict-origin-when-cross-origin"
106+
107+
[[headers]]
108+
for = "/2017/10/17/acme-support-in-apache-httpd/"
109+
[headers.values]
110+
Referrer-Policy = "strict-origin-when-cross-origin"
111+
102112
[[headers]]
103113
for = "/certs/*.pem"
104114
[headers.values]

0 commit comments

Comments
 (0)