From a66c112c74cc4cf52351b22c05eebd20003c0e25 Mon Sep 17 00:00:00 2001
From: Flavio Heleno <flaviohbatista@gmail.com>
Date: Fri, 22 Jul 2022 06:06:45 -0300
Subject: [PATCH] Remove obsolete/uneeded headers suggested by code review

---
 docker/nginx/default.conf | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/docker/nginx/default.conf b/docker/nginx/default.conf
index de00fb55..70657eeb 100644
--- a/docker/nginx/default.conf
+++ b/docker/nginx/default.conf
@@ -9,11 +9,8 @@ server {
   try_files $uri /index.php$is_args$args;
 
   # security headers
-  add_header X-XSS-Protection          "1; mode=block" always;
-  add_header X-Content-Type-Options    "nosniff" always;
   add_header Referrer-Policy           "no-referrer-when-downgrade" always;
   add_header Content-Security-Policy   "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
-  add_header Permissions-Policy        "interest-cohort=()" always;
   add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
 
   location ~* \.(css|png|ico|webmanifest|eot|svg|ttf|woff|woff2|txt)$ {