In my endless effort to secure my WP install as much as possible, I have run into an issue. I am trying to add the following code to my .htaccess file. From what I can tell from an online scan, they are not working like they should. I believe they are suppose to work on Apache, but is there anything with NginX that would cause these not to work? If so, is there a better way I can implement them?
Header always append X-Frame-Options SAMEORIGIN
Header Referrer-Policy: no-referrer-when-downgrade