X-Git-Url: https://git.squeep.com/?a=blobdiff_plain;f=config%2Fconfig.md;h=c843bca5d87b63c35ba68b696f24d7043563a9d7;hb=6979eeda34a7c9c201c0816f322c3a29c6d947e6;hp=51172fc4dc33ee5b73598fc38f4363100f66dbc6;hpb=d1a7a9fd24403600851cb541a2021d32b7cc8fc5;p=akkoma

diff --git a/config/config.md b/config/config.md
index 51172fc4d..c843bca5d 100644
--- a/config/config.md
+++ b/config/config.md
@@ -80,3 +80,23 @@ This section is used to configure Pleroma-FE, unless ``:managed_config`` in ``:i
 * ``unfollow_blocked``: Whether blocks result in people getting unfollowed
 * ``outgoing_blocks``: Whether to federate blocks to other instances
 * ``deny_follow_blocked``: Whether to disallow following an account that has blocked the user in question
+
+## :http_security
+* ``enabled``: Whether the managed content security policy is enabled
+* ``sts``: Whether to additionally send a `Strict-Transport-Security` header
+* ``sts_max_age``: The maximum age for the `Strict-Transport-Security` header if sent
+* ``ct_max_age``: The maximum age for the `Expect-CT` header if sent
+* ``referrer_policy``: The referrer policy to use, either `"same-origin"` or `"no-referrer"`.
+
+## :mrf_user_allowlist
+
+The keys in this section are the domain names that the policy should apply to.
+Each key should be assigned a list of users that should be allowed through by
+their ActivityPub ID.
+
+An example:
+
+```
+config :pleroma, :mrf_user_allowlist,
+  "example.org": ["https://example.org/users/admin"]
+```