From 30659a6c57fb1a48a58aebcb259113edc7d3c7ea Mon Sep 17 00:00:00 2001
From: Yann Bertrand <5855339+yannbertrand@users.noreply.github.com>
Date: Sun, 24 Sep 2023 21:41:27 +0200
Subject: [PATCH] :truck: Move netlify headers config to root file

---
 docs/public/_headers |  8 --------
 netlify.toml         | 13 +++++++++++++
 2 files changed, 13 insertions(+), 8 deletions(-)
 delete mode 100644 docs/public/_headers

diff --git a/docs/public/_headers b/docs/public/_headers
deleted file mode 100644
index 45dfbd4d..00000000
--- a/docs/public/_headers
+++ /dev/null
@@ -1,8 +0,0 @@
-/*
-  Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://netlify-rum.netlify.app/netlify-rum.js; style-src 'self' 'unsafe-inline'; img-src 'self' data: https://www.netlify.com; media-src 'self' data:; object-src 'none'; connect-src https://*.algolia.net https://*.algolianet.com;
-  X-Frame-Options: DENY
-  X-Content-Type-Options: nosniff
-  X-XSS-Protection: 1; mode=block
-
-/assets/*
-  Cache-Control: max-age=31536000,immutable
diff --git a/netlify.toml b/netlify.toml
index 087507cc..964d1d3d 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -17,3 +17,16 @@ fail_deploy_on_score_thresholds = "true"
 accessibility = 1
 best-practices = 1
 seo = 1
+
+[[headers]]
+for = "/assets/*"
+[headers.values]
+Cache-Control = '''max-age=31536000,immutable'''
+
+[[headers]]
+for = "/*"
+[headers.value]
+Content-Security-Policy = "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://netlify-rum.netlify.app/netlify-rum.js; style-src 'self' 'unsafe-inline'; img-src 'self' data: https://www.netlify.com; media-src 'self' data:; object-src 'none'; connect-src https://*.algolia.net https://*.algolianet.com;"
+X-Frame-Options = "DENY"
+X-Content-Type-Options = "nosniff"
+X-XSS-Protection = "1; mode=block"