Update nginx configs

Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>

2 files changed, 5 insertions, 7 deletions

diff --git a/nginx/matrix_kyriasis_com.sls b/nginx/matrix_kyriasis_com.sls
index 127396e..864251f 100644
--- a/nginx/matrix_kyriasis_com.sls
+++ b/nginx/matrix_kyriasis_com.sls
@@ -37,9 +37,6 @@ nginx:
               # https://developer.mozilla.org/en-US/docs/Security/HTTP_Strict_Transport_Security
               - add_header: 'Strict-Transport-Security "max-age=31536000"' 
 
-              # Tell browsers not to render the page inside a frame, and avoid clickjacking.
-              - add_header: X-Frame-Options SAMEORIGIN
-
               # Tell browsers to not try to auto-detect the Content-Type.
               - add_header: X-Content-Type-Options nosniff
 
diff --git a/nginx/theos_kyriasis_com.sls b/nginx/theos_kyriasis_com.sls
index 23b678d..aad03ec 100644
--- a/nginx/theos_kyriasis_com.sls
+++ b/nginx/theos_kyriasis_com.sls
@@ -59,15 +59,16 @@ nginx:
               - location /~kyrias:
                 - alias: /home/kyrias/public_html/
                 - index: index.html
-                - try_files: $uri $uri.html $uri/ =404
-                - autoindex: 'on'
                 - expires: modified +24h
 
                 - location = /~kyrias/journal/10-mercurian-pronouns.html:
                   - return: '301 https://web.archive.org/web/https://theos.kyriasis.com/~kyrias/journal/10-mercurian-pronouns.html'
+                - location ^~ /~kyrias/static:
+                  - alias: /home/kyrias/code/kyrias-website/kyrias_website/static/
+                  - expires: +30d
 
-                - location ~ \.(js|css|png):
-                  - expires: modified +7d
+                - location ^~ /~kyrias/d:
+                  - autoindex: 'on'
 
               - location /~xanadu:
                 - alias: /home/xanadu/public_html/