85 строки
5.3 KiB
XML
85 строки
5.3 KiB
XML
<?xml version="1.0" encoding="utf-8"?>
|
|
<configuration>
|
|
<!--
|
|
Configure your application settings in appsettings.json. Learn more at http://go.microsoft.com/fwlink/?LinkId=786380
|
|
-->
|
|
<system.webServer>
|
|
<security>
|
|
<requestFiltering removeServerHeader="true">
|
|
<requestLimits maxAllowedContentLength="1073741824"></requestLimits>
|
|
<fileExtensions allowUnlisted="true">
|
|
<remove fileExtension="." />
|
|
<remove fileExtension=".cs" />
|
|
<add fileExtension="." allowed="true" />
|
|
<add fileExtension=".cs" allowed="true" />
|
|
</fileExtensions>
|
|
</requestFiltering>
|
|
</security>
|
|
<!--<handlers>
|
|
<add name="aspNetCore" path="*" verb="*" modules="AspNetCoreModule" resourceType="Unspecified"/>
|
|
</handlers>-->
|
|
<aspNetCore processPath="%LAUNCHER_PATH%" arguments="%LAUNCHER_ARGS%" stdoutLogEnabled="false" stdoutLogFile=".\logs\stdout" forwardWindowsAuthToken="false" hostingModel="inprocess" />
|
|
<handlers>
|
|
<add name="aspNetCore" path="*" verb="*" modules="AspNetCoreModule" resourceType="Unspecified" />
|
|
</handlers>
|
|
<rewrite>
|
|
<rules>
|
|
<!-- DocIO Redirection -->
|
|
<rule name="DocIO to Word" stopProcessing="true">
|
|
<match url=".*" />
|
|
<conditions>
|
|
<add input="{URL}" pattern="/aspnetcore/DocIO/(.*)" />
|
|
</conditions>
|
|
<action type="Redirect" url="https://ej2.syncfusion.com/aspnetcore/word/{C:1}" />
|
|
</rule>
|
|
<!-- XlsIO Redirection -->
|
|
<rule name="XlsIO to Excel" stopProcessing="true">
|
|
<match url=".*" />
|
|
<conditions>
|
|
<add input="{URL}" pattern="/aspnetcore/XlsIO/(.*)" />
|
|
</conditions>
|
|
<action type="Redirect" url="https://ej2.syncfusion.com/aspnetcore/excel/{C:1}" />
|
|
</rule>
|
|
<!-- Presentation Redirection -->
|
|
<rule name="Presentation to PowerPoint" stopProcessing="true">
|
|
<match url=".*" />
|
|
<conditions>
|
|
<add input="{URL}" pattern="/aspnetcore/Presentation/(.*)" />
|
|
</conditions>
|
|
<action type="Redirect" url="https://ej2.syncfusion.com/aspnetcore/powerpoint/{C:1}" />
|
|
</rule>
|
|
<!-- UpperCase to LowerCase URL Redirection -->
|
|
<rule name="LowerCaseRule" stopProcessing="true">
|
|
<match url="[A-Z]" ignoreCase="false" />
|
|
<conditions>
|
|
<add input="{REQUEST_METHOD}" pattern="POST" negate="true" />
|
|
</conditions>
|
|
<action type="Redirect" url="{ToLower:{URL}}" />
|
|
</rule>
|
|
</rules>
|
|
</rewrite>
|
|
<!-- Configure the "Access-Control-Allow-Origin" HTTP header to a more restrictive set of domains -->
|
|
<!-- Configure the "X-Frame-Options" HTTP header response to protect against 'ClickJacking' attacks -->
|
|
<httpProtocol>
|
|
<customHeaders>
|
|
<add name="Access-Control-Allow-Origin" value="https://ej2.syncfusion.com" />
|
|
<add name="Content-Security-Policy" value="default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ej2aspnetcore.azurewebsites.net https://cdn.syncfusion.com https://ej2.syncfusion.com https://www.googletagmanager.com https://www.youtube.com https://www.clarity.ms https://www.google-analytics.com https://cdnjs.cloudflare.com blob:;
|
|
style-src 'self' 'unsafe-inline' data: https://ej2aspnetcore.azurewebsites.net https://fonts.googleapis.com https://cdn.syncfusion.com https://ej2.syncfusion.com;
|
|
img-src 'self' 'unsafe-inline' blob: data: https://ej2aspnetcore.azurewebsites.net https://cdn.syncfusion.com https://ej2.syncfusion.com https://tile.openstreetmap.org https://www.googletagmanager.com https://ej2-aspcore-service.azurewebsites.net https://c.clarity.ms/c.gif https://c.bing.com https://www.google.co.in https://ej2-azure-aspcore-service.azurewebsites.net https://amazons3.azurewebsites.net https://ej2-ibm-cos-node-file-provider.azurewebsites.net https://ej2services.syncfusion.com https://services.syncfusion.com;
|
|
media-src 'self' 'unsafe-inline' blob: data: https://cdn.syncfusion.com; connect-src 'self' data: ws: https://ej2aspnetcore.azurewebsites.net https://ej2services.syncfusion.com https://services.syncfusion.com https://cdn.syncfusion.com https://bi.syncfusion.com https://ej2.syncfusion.com https://www.google-analytics.com/ https://www.googleapis.com https://*.clarity.ms https://services.odata.org https://ej2-aspcore-service.azurewebsites.net https://ej2-azure-aspcore-service.azurewebsites.net https://ej2-nodejs-service.azurewebsites.net https://amazons3.azurewebsites.net https://realtime-firebase.azurewebsites.net;
|
|
font-src 'self' data: https://fonts.gstatic.com;
|
|
form-action 'self' https://ej2-aspcore-service.azurewebsites.net https://ej2-azure-aspcore-service.azurewebsites.net https://amazons3.azurewebsites.net https://ej2-ibm-cos-node-file-provider.azurewebsites.net;
|
|
frame-ancestors 'self'; frame-src https://boldpdftools.com;" />
|
|
<add name="Strict-Transport-Security" value="max-age=31536000; includeSubDomains" />
|
|
<add name="X-Content-Type-Options" value="nosniff" />
|
|
<add name="X-Frame-Options" value="SAMEORIGIN" />
|
|
<remove name="X-Powered-By" />
|
|
</customHeaders>
|
|
</httpProtocol>
|
|
</system.webServer>
|
|
<!-- Implemented custom error pages -->
|
|
<system.web>
|
|
<customErrors mode="On" />
|
|
</system.web>
|
|
</configuration>
|