next.config.js

require('dotenv').config({
  path: `.env.${process.env.NODE_ENV}`
});

const { createSecureHeaders } = require('next-secure-headers');

const isDev = process.env.NODE_ENV !== 'production';

(module.exports = {
  reactStrictMode: true,
  swcMinify: true,
  webpack: function (config) {
    config.module.rules.push({
      test: /\.md$/,
      use: 'markdown-loader'
    });
    return config;
  },
  sassOptions: {
    outputStyle: 'expanded',
    indentWidth: 4,
    additionalData: `
        @use 'styles/vars' as *;
        @use 'styles/breakpoints' as *;
        @use 'styles/utilities' as utils;
        @use 'styles/animations' as animations;
      `
  },
  async headers() {
    const baseString = [
      "'self'",
      'data:',
      'blob:',
      'wss:',
      'firebasedatabase.app',
      '*.firebasedatabase.app'
    ];
    // Default content security policy
    const cspString = isDev
      ? [...baseString, "'unsafe-inline'", "'unsafe-eval'"]
      : baseString;
    // Add additional content security policy directives
    const connectSrc = [
      ...cspString,
      process.env.NEXT_PUBLIC_FIREBASE_AUTH_DOMAIN,
      'identitytoolkit.googleapis.com'
    ];

    const directives = {
      'default-src': cspString,
      'script-src': cspString,
      'style-src': cspString,
      'img-src': "'self' https: data:",
      'font-src': cspString,
      'connect-src': connectSrc,
      'frame-src': cspString,
      'media-src': cspString,
      'frame-ancestors': `'none'`,
      'base-uri': `'none'`,
      'form-action': `'none'`
    };

    return [
      {
        source: '/(.*)',
        headers: createSecureHeaders({
          contentSecurityPolicy: {
            directives
          },
          forceHTTPSRedirect: [
            true,
            { maxAge: 60 * 60 * 24 * 4, includeSubDomains: true }
          ],
          referrerPolicy: 'same-origin'
        })
      }
    ];
  },
  async redirects() {
    return [
      {
        source: '/home',
        destination: '/holding',
        permanent: false
      },
      {
        source: '/docs/getting-started',
        destination: '/holding',
        permanent: false
      },
      {
        source: '/docs',
        destination: '/holding',
        permanent: false
      },
      {
        source: '/pricing',
        destination: '/holding',
        permanent: false
      },
      {
        source: '/contact',
        destination: '/holding',
        permanent: false
      },
      {
        source: '/about',
        destination: '/holding',
        permanent: false
      },
      {
        source: '/trade-store',
        destination: '/holding',
        permanent: false
      }
    ];
  }
}),
  {};