Server Configs Nginx Versions Save

• Set ssl_prefer_server_ciphers to off by @avj in https://github.com/h5bp/server-configs-nginx/pull/328
• Add browsing-topics to Permissions-Policy header by @dmarti in https://github.com/h5bp/server-configs-nginx/pull/323
• Improve README docs by @petecooper in https://github.com/h5bp/server-configs-nginx/pull/333
• Improve inline comments.

Full Changelog: https://github.com/h5bp/server-configs-nginx/compare/5.0.0...5.0.1

• 🎉 Significant improvement on Cache-Control definition and usage
  • Cache-Control boilerplate with extensive control by @LeoColomb in https://github.com/h5bp/server-configs-nginx/pull/319
  • Switch to a proper no-cache directive on cache expiration config by @allantatter in https://github.com/h5bp/server-configs-nginx/pull/314
  • Valuable feedbacks by @StrangePeanut, @jchimene, @emansom, and @Dreamsorcerer
• Reorder and improve cache expiration expires map by @LeoColomb in https://github.com/h5bp/server-configs-nginx/pull/324
• Drop image/avif-sequence MIME-type in https://github.com/h5bp/server-configs-nginx/commit/4bc5275d5a3fdb34e6298240db7215c3270a916e
• Improve inline comments.

Full Changelog: https://github.com/h5bp/server-configs-nginx/compare/4.2.0...5.0.0

• Extend media, font and default cache TTL to 1 year [4a229657fdad9c039529314aed0fc0ae17480829] [3869706922bf4897d20c5cc35817a1a4107d7623]
• Add compression support for .ico files [537a0229a1bfa89ebc983aa0d78b62cb6998a997]
• Dropped legacy and non web related file types [a9617688fc921e728d5dcd044db9327aa50ede79] [175cc52e3fbd75628021df55f61f25cadca8e45c]

Recommended reading: https://www.nginx.com/blog/avoiding-top-10-nginx-configuration-mistakes/

• Add support for custom values import [fbdaa3f867f3c8e1926df6bfe5943bfe57926ef5]

• ⚠️ Breaking: End of support for Internet Explorer (X-UA-Compatible and X-XSS-Protection headers) [4556277] [836467c]
• 🎉 Security first! Modernize TLS configuration [688348a]
• 🎉 Security first! Refresh policies-related headers usage
  • Add Cross Origin Policies headers (COOP/COEP/CORP) [25a569d]
  • Add Permissions-Policy header [36310b9]
  • Make Content-Security-Policy disallow 'object-src' by default [8600df1]
• Add mime-type image/jxl [b9ef881]
• Improve inline comments.

• Add mime-type image/avif and image/avifs [a9aea70]
• Add mime-type image/apng [ba4967f]
• Improve inline comments.

• Stricter default for Referrer Policy strict-origin-when-cross-origin [e0724b814952f6aee3c09dd578480c9c143955ae]
• Revert: drop Cache-Control: no-transform usage [bc39e4c07d23edfc0acd3c11de88e95af5880eee]
• Rewrite, improve and update a large part of the documentation [0af305283f99abfc85e4395201ffadc7de975d4b][177a5e94a60d9c27a8831a1d63211ffe6f6a83a3][5ca3aed56c83a0f80c88cc85b66abf9b118557ee][bb2a30caccd240bab3baa511c25152117961bd09][5ca3aed56c83a0f80c88cc85b66abf9b118557ee]
• Ensure the presence of security headings where expected [41689406c87990eb8c6200a62b1baa7c1705dd31][3615dfa351c54e724f17737643e6ecbe7836d06c][98de990c1c572354fc2d3f8c7f30940e3af9cdf0]
• Remove non-ASCII character from config files [d2f597235a1d384cf1d69cb51a74c22755c0c11c]
• Improve inline comments.

• Drop Cache-Control: no-transform usage [282d979]
• Disable cache expiration for empty content-type resources [c73d1ef]
• Remove Content-Security-Policy from basic.conf includes [29ff09a]
• Improve default Content-Security-Policy values [276af8d]
• Add Google Public DNS IPv6 and Cloudflare DNS IP addresses to default resolver [28874c3]
• Pre-compressed content usage config files [8db768b]
• Improve inline comments.

• Use regexp in MIME-types based maps [d65cd977618ede702f15e084cb0f4a152e204935] [db1601f6064fd7d3d822618cf2e069a6b0cb8e9f]
• Fix SVGZ compression handling [cec616a103345ccef418a16549adee60f650cf52]
• Add Referrer-Policy for HTML documents by default [f600128203e6319d6f3ce02e2538bf65b0ed01ea]

• ⚠️ Breaking: Drop support for Nginx version < 1.8.0 [1f5d6359be53e90b634ea0451b121cfbeffa4b63]
• ⚠️ Breaking: Switch from sites-enabled/available to conf.d [306af367e97a5f177b8bc479cef416fef2508732]
• ⚠️ Breaking: Refactor h5bp/ directives to strict atomic structure [496af1cfd535d472d8bbd2db0a322f988803741b] [2d135053cbd96e1e74884e4395c3163b8a39602f]
• ⚠️ Breaking: Refactor and modernize TLS/SSL directives [1b2b4eb...d2531ac]
• ⚠️ Breaking: Move common header directives from location directives to mapped values based on MIME-types [6dd4cc27edafc26e73d8998ab146235774d4abdc]
• 🎉 Tests! Add tests and configure continuous integration to help community contributions [52e13535b46ca862d1a51d083d7696eb964fe82b]
• Replace location block add_header directives with expires directives [135d093a7505a72810156760b23b1f03e18c8b0a]
• Support hashed asset names [1b2b4eb2766e3be99f30c65c86c265fc07edcdad]
• Update many values in MIME-types table [62dbd41aeefb063be761741098a2584f1019f586] [08272b63c2c9d0f875480a62caa615fe20387ad7] [9c6aad83a509cb9dc72cacf17a54281326dd9ca9] [b244111468ce69218acad08ccc4b79c43f88c8c9] [94262e76103a2f69d3f66b4e92c0c0ebb3cd486b] [b244111468ce69218acad08ccc4b79c43f88c8c9] [fe7ff95a7fc96315a9022f4d02c11e6264b1bb1c]
• Remove outdated inline script [8a4a1ce706eb90d820f6a2ccaa23f5f55e6c056e]
• Improve inline comments and review documentation.