-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathnext.config.js
70 lines (62 loc) · 2.63 KB
/
next.config.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
const { withContentlayer } = require('next-contentlayer2')
const withBundleAnalyzer = require('@next/bundle-analyzer')({
enabled: process.env.ANALYZE === 'true',
})
// You might need to insert additional domains in script-src if you are using external services
const ContentSecurityPolicy = `
default-src 'self';
script-src 'self' 'unsafe-eval' 'unsafe-inline' giscus.app analytics.umami.is;
style-src 'self' 'unsafe-inline';
img-src * blob: data:;
media-src *.s3.amazonaws.com;
connect-src *;
font-src 'self';
frame-src giscus.app
`
const securityHeaders = [
// https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
{ key: 'Content-Security-Policy', value: ContentSecurityPolicy.replace(/\n/g, '') },
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
{ key: 'Referrer-Policy', value: 'strict-origin-when-cross-origin' },
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
{ key: 'X-Frame-Options', value: 'DENY' },
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
{ key: 'X-Content-Type-Options', value: 'nosniff' },
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-DNS-Prefetch-Control
{ key: 'X-DNS-Prefetch-Control', value: 'on' },
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
{ key: 'Strict-Transport-Security', value: 'max-age=31536000; includeSubDomains' },
// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Feature-Policy
{ key: 'Permissions-Policy', value: 'camera=(), microphone=(), geolocation=()' },
]
const isProd = process.env.NODE_ENV === 'production'
const output = isProd ? 'export' : undefined
const basePath = process.env.BASE_PATH || undefined
const unoptimized = process.env.UNOPTIMIZED ? true : undefined
/**
* @type {import('next/dist/next-server/server/config').NextConfig}
**/
module.exports = () => {
const plugins = [withContentlayer, withBundleAnalyzer]
return plugins.reduce((acc, next) => next(acc), {
output,
basePath,
reactStrictMode: true,
pageExtensions: ['ts', 'tsx', 'js', 'jsx', 'md', 'mdx'],
eslint: { dirs: ['app', 'components', 'layouts', 'scripts'] },
images: {
remotePatterns: [
{ protocol: 'https', hostname: 'res.cloudinary.com' },
{ protocol: 'https', hostname: 'sa02045.github.io' },
{ protocol: 'https', hostname: 'github.io' },
],
},
async headers() {
return [{ source: '/(.*)', headers: securityHeaders }]
},
webpack: (config, options) => {
config.module.rules.push({ test: /\.svg$/, use: ['@svgr/webpack'] })
return config
},
})
}