From e66720faccc9ad61279b83d5bae9973101a4655f Mon Sep 17 00:00:00 2001
From: "Kevin \"Kenny\" Niehage" <kenny@syseleven.de>
Date: Mon, 19 Apr 2021 14:12:30 +0200
Subject: [PATCH] opt out of Google FLoC by default

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 028d9f2..9e9e80a 100644
--- a/README.md
+++ b/README.md
@@ -108,6 +108,7 @@ server {
 
   # set security headers
   add_header Content-Security-Policy   "base-uri 'self'; default-src 'self'; form-action 'self'; frame-ancestors 'self'; require-sri-for script style";
+  add_header Permissions-Policy        "interest-cohort=()";
   add_header Referrer-Policy           "same-origin";
   add_header Strict-Transport-Security "max-age=15768000; includeSubDomains; preload";
   add_header X-Content-Security-Policy "base-uri 'self'; default-src 'self'; form-action 'self'; frame-ancestors 'self'; require-sri-for script style";