From f8c9f254c4a8bf50a8c462a806e752b21bb58bac Mon Sep 17 00:00:00 2001
From: "srvproxy001.itguys.com.br" <srvproxy001@itguys.com.br>
Date: Fri, 26 Sep 2025 23:37:49 -0300
Subject: [PATCH] =?UTF-8?q?[Auto-Sync]=20Atualiza=C3=A7=C3=A3o=20das=20con?=
 =?UTF-8?q?figura=C3=A7=C3=B5es=20em=20srvproxy001.itguys.com.br=20-=20202?=
 =?UTF-8?q?5-09-26=2023:37:49?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 nginx/sites-available/cloud.grupopralog.com.br.conf | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/nginx/sites-available/cloud.grupopralog.com.br.conf b/nginx/sites-available/cloud.grupopralog.com.br.conf
index 40da6f0..df3b298 100644
--- a/nginx/sites-available/cloud.grupopralog.com.br.conf
+++ b/nginx/sites-available/cloud.grupopralog.com.br.conf
@@ -99,12 +99,12 @@ server {
     add_header Strict-Transport-Security "max-age=15552000; includeSubDomains" always;
     add_header X-Content-Type-Options "nosniff" always;
     # O header "X-XSS-Protection" foi removido por ser obsoleto.
-    proxy_hide_header "X-Frame-Options"; # Remove o header do backend para evitar duplicidade.
+    proxy_hide_header "X-Frame-Options";
+    proxy_hide_header "Feature-Policy";
     add_header X-Frame-Options "SAMEORIGIN" always;
     add_header Referrer-Policy "no-referrer" always;
     # NOVO: Adiciona a Permissions-Policy para desativar funcionalidades sensíveis.
-    add_header Permissions-Policy "geolocation=(), midi=(), notifications=(), push=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), speaker=(), vibrate=(), fullscreen=(), payment=()" always;
-
+    add_header Permissions-Policy "geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), fullscreen=(), payment=()" always;
     # --- Bloco de Compressão (sem alterações) ---
     brotli on;
     brotli_comp_level 6;