configured Apache security header

Referrer-Policy
X-Frame-Options
X-Xss-Protection
Permissions-Policy
X-Content-Type-Options
Content-Security-Policy
Strict-Transport-Security
Cross-Origin-Resource-Policy