From f8e98feabcf884440c6534fde53c1b14a9d5d42c Mon Sep 17 00:00:00 2001
From: Ari Archer <ari.web.xyz@gmail.com>
Date: Sun, 25 Sep 2022 05:04:58 +0300
Subject: [PATCH] Push a temporary HSTS hack because for netlify broken
 root-level domains

Signed-off-by: Ari Archer <ari.web.xyz@gmail.com>
---
 netlify.toml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/netlify.toml b/netlify.toml
index 7afccd8..736031d 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -192,3 +192,10 @@
         X-Permitted-Cross-Domain-Policies = "none"
         Referrer-Policy = "no-referrer"
 
+[[headers]]
+    for = "https://ari-web.xyz"
+
+    [headers.values]
+        Strict-Transport-Security = "max-age=63072000; includeSubDomains; preload"
+        Content-Security-Policy = "upgrade-insecure-requests"
+        Referrer-Policy = "no-referrer"