infra
/
cryptpad
2
1
Fork 0
Code Issues Pull Requests Projects Releases 1 Activity

Chuck a few more super-duper-security headers in there

Browse Source
pull/1/head
Caleb James DeLisle 8 years ago
parent f8ac3a6ad3
commit 72fc2e7068
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File

5
server.js
Unescape Escape View File

@ -41,6 +41,11 @@ app.use(function (req, res, next) {
// documents in ckeditor. // documents in ckeditor.
"img-src data: *" "img-src data: *"
].join('; ')); ].join('; '));
res.setHeader('X-XSS-Protection', '1; mode=block');
res.setHeader('X-Content-Type-Options', 'nosniff');
res.setHeader('X-Frame-Options', 'SAMEORIGIN');
next(); next();
}); });

Write Preview
Loading…
Cancel
Save