From 19492a714d9bc01d73c5849bc5961a548a777828 Mon Sep 17 00:00:00 2001
From: djmaze <djmaze@djmaze.lan>
Date: Mon, 19 Apr 2021 20:42:01 +0200
Subject: [PATCH] Also prevent Google FLoC in .htaccess

---
 .htaccess                                             | 3 +++
 snappymail/v/0.0.0/app/libraries/RainLoop/Service.php | 2 ++
 2 files changed, 5 insertions(+)

diff --git a/.htaccess b/.htaccess
index 8b8b08db7..0c2db6f7e 100644
--- a/.htaccess
+++ b/.htaccess
@@ -28,6 +28,9 @@ RewriteRule cpsess.* https://%{HTTP_HOST}/ [L,R=301]
 	Header set X-XSS-Protection "1; mode=block"
 	Header set Service-Worker-Allowed "/"
 
+	# Google FLoC
+	Header set Permissions-Policy "interest-cohort=()"
+
 	RewriteCond %{HTTP:Accept-encoding} br
 	RewriteCond "%{REQUEST_FILENAME}\.br" -s
 	RewriteRule "^(.+)" "$1\.br" [L,T=text/javascript,QSA]
diff --git a/snappymail/v/0.0.0/app/libraries/RainLoop/Service.php b/snappymail/v/0.0.0/app/libraries/RainLoop/Service.php
index 0a69e6c0f..3809ed1ec 100644
--- a/snappymail/v/0.0.0/app/libraries/RainLoop/Service.php
+++ b/snappymail/v/0.0.0/app/libraries/RainLoop/Service.php
@@ -41,6 +41,8 @@ class Service
 
 		\header('Referrer-Policy: no-referrer');
 		\header('X-Content-Type-Options: nosniff');
+
+		// Google FLoC
 		\header('Permissions-Policy: interest-cohort=()');
 
 		$sContentSecurityPolicy = \trim($this->oActions->Config()->Get('security', 'content_security_policy', '')) ?: APP_DEFAULT_CSP;