reenable same-origin CSP

pull/1/head
ansuz 8 years ago
parent 542d0cd17f
commit eebe473f13

@ -18,7 +18,7 @@ module.exports = {
httpHeaders: {
"X-XSS-Protection": "1; mode=block",
"X-Content-Type-Options": "nosniff",
// 'X-Frame-Options': 'SAMEORIGIN',
'X-Frame-Options': 'SAMEORIGIN',
},
contentSecurity: [

Loading…
Cancel
Save