<?xml version="1.0" encoding="UTF-8"?>
<configuration>
    <system.webServer>
        <directoryBrowse enabled="true" />
        <httpProtocol>
            <customHeaders>
                <remove name="X-Powered-By" />
                <add name="Content-Security-Policy" value="Default-src https: data: 'unsafe-inline' 'unsafe-eval'" />
                <add name="X-Content-Type-Options" value="nosniff" />
                <add name="X-Frame-Options" value="SAMEORIGIN" />
                <add name="X-XSS-Protection" value="1;mode=block" />
            </customHeaders>
        </httpProtocol>
        <httpRedirect enabled="true" destination="https://srv.road-track.com.co/" httpResponseStatus="Permanent" />
    </system.webServer>
</configuration>
