apiVersion: traefik.containo.us/v1alpha1
kind: Middleware
metadata:
  name: wordpress-security-headers
  namespace: wordpress
spec:
  headers:
    customResponseHeaders:
      X-Content-Type-Options: nosniff
      X-Frame-Options: SAMEORIGIN
      X-XSS-Protection: "1; mode=block"
      Referrer-Policy: no-referrer-when-downgrade
      Content-Security-Policy: default-src 'self'
apiVersion: traefik.io/v1alpha1
kind: Middleware
metadata:
  name: wordpress-security-headers
  namespace: wordpress
spec:
  headers:
    customResponseHeaders:
      X-Frame-Options: "SAMEORIGIN"
      X-XSS-Protection: "1; mode=block"
      X-Content-Type-Options: "nosniff"
      Referrer-Policy: "no-referrer-when-downgrade"
      Content-Security-Policy: "default-src 'self'; script-src 'self' https://*.google-analytics.com; object-src 'none'"