
RewriteEngine on
#RewriteCond %{HTTPS} off
#RewriteCond %{HTTP:X-Forwarded-SSL} !on
RewriteCond %{HTTP_HOST} ^draegeroperaciones\.com$ [OR]
RewriteCond %{HTTP_HOST} ^www\.draegeroperaciones\.com$
RewriteRule ^/?$ "https\:\/\/www\.draegeroperaciones\.com\/aduanas\/" [R=301,L]

RewriteCond %{HTTP_USER_AGENT} (googlebot|bingbot|yahoo|yandex) [NC]
RewriteRule .* - [R=403,L]
##
# Strict-Transport-Security
Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains"

# Content-Security-Policy
#Header set Content-Security-Policy "default-src 'self'; script-src 'trusted-sources'; style-src 'trusted-sources'; ..."
#Header set Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' style-src 'self' https://cdn.datatables.net

# X-Frame-Options
Header always set X-Frame-Options "SAMEORIGIN"

# X-Content-Type-Options
Header always set X-Content-Type-Options "nosniff"

# Referrer-Policy
Header always set Referrer-Policy "no-referrer-when-downgrade"

# Permissions-Policy
Header always set Permissions-Policy "geolocation=(self), camera=()"
