Skip to content

Instantly share code, notes, and snippets.

@Aviortheking

Aviortheking/dzeio.next.config.js

Last active May 21, 2021 14:50
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save Aviortheking/631b526db9293e495a7f029e28819d31 to your computer and use it in GitHub Desktop.
Save Aviortheking/631b526db9293e495a7f029e28819d31 to your computer and use it in GitHub Desktop.
Download ZIP
DZEIO Next.JS configuration
Raw
dzeio.next.config.js
// V1.1.1 - Added futures blurry Placeholder and left optimizedLoading enabled
// Updated to commit from 2021-05-18
// https://github.com/vercel/next.js/commits/canary/packages/next/next-server/server/config-shared.ts
/**
* @type {import("next/dist/next-server/server/config-shared").NextConfig & import("next/dist/next-server/server/config-shared").defaultConfig}
*/
const nextConfig = {
// Experimentals
experimental: {
plugins: true,
profiling: process.env.NODE_ENV === 'developpment',
sprFlushToDisk: true,
workerThreads: true,
pageEnv: true,
optimizeImages: true,
optimizeCss: true,
scrollRestoration: true,
scriptLoader: true,
stats: process.env.NODE_ENV === 'developpment',
externalDir: true,
serialWebpackBuild: true,
conformance: true,
turboMode: true,
eslint: true,
// Bugged
// https://github.com/vercel/next.js/issues/18913
// reactRoot: true,
enableBlurryPlaceholder: true,
disableOptimizedLoading: false,
},
// Non experimental config
// target: 'serverless',
poweredByHeader: false,
trailingSlash: false,
optimizeFonts: true,
reactStrictMode: true,
// Futures
future: {
webpack5: true,
strictPostcssConfiguration: true,
excludeDefaultMomentLocales: true
},
// Headers and rewrites
async headers() {
// CSS no CSP, x-xss-protection
const CSP = {
key: 'Content-Security-Policy',
value:
// default-src is set to self because prefetch-src is not working propelly see: https://bugs.chromium.org/p/chromium/issues/detail?id=801561
"default-src 'self'; " +
"frame-ancestors 'none'; " +
"form-action 'self'; " +
"manifest-src 'self'; " +
"prefetch-src 'self'; " +
"script-src 'self' 'unsafe-inline' 'unsafe-eval' https://stats.dzeio.com; " +
"style-src 'self' 'unsafe-inline'; " +
"img-src data: 'self'; " +
"font-src 'self'; " +
"connect-src 'self' https://stats.dzeio.com; " +
"base-uri 'self';"
}
const XXssProtection = {
key: 'X-XSS-Protection',
value: '1; mode=block'
}
// JS no x-xss-protection
const headers = [{
key: 'X-Frame-Options',
value: 'DENY'
}, {
key: 'X-Content-Type-Options',
value: 'nosniff'
}, {
key: 'Referrer-Policy',
value: 'strict-origin-when-cross-origin'
}, {
key: 'Permissions-Policy',
value: 'geolocation=(), microphone=(), interest-cohort=()'
}, {
key: 'Strict-Transport-Security',
value: 'max-age=63072000; includeSubDomains; preload'
}, {
key: 'X-Download-Options',
value: 'noopen'
}, {
key: 'Expect-CT',
value: 'max-age=86400, enforce'
}]
const excludedExtensions = ['js', 'css', 'json', 'ico', 'png']
.map((ext) => `(?!\\.${ext}$)`).join('|')
return [{
source: `/:path*((?!^\\/_next\\/image)|${excludedExtensions})`,
headers: [...headers, XXssProtection, CSP]
}, {
source: '/',
headers: [...headers, XXssProtection, CSP]
}, {
// No CSP, XXssProtection
source: `/:path*(\\.${excludedExtensions}$)`,
headers: headers
}, {
// No CSP, XXssProtection
source: '/_next/image',
headers: headers
}]
},
}
module.exports = nextConfig
Raw
next.config.js
// Add support for Stylus/LESS
const preCSS = require('next-pre-css')
// Use Compose plugin for easier maintenance
const withPlugins = require('next-compose-plugins')
const {PHASE_DEVELOPMENT_SERVER} = require('next/constants')
const nextConfig = require('./dzeio.next.config')
module.exports = withPlugins([
[preCSS, {
cssModules: true,
cssLoaderOptions: {
localIdentName: "[hash:base64:6]",
},
[PHASE_DEVELOPMENT_SERVER]: {
cssLoaderOptions: {
localIdentName: "[path][name]__[local]"
}
}
}]
],
nextConfig
)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment