cybrespace
/
mastodon
4
3
Fork 3
Code Issues 7 Pull Requests Releases Activity

Fix missing default headers

This commit is contained in:
Eugen Rochko 2016-11-02 13:12:18 +01:00
parent 9467b900a2
commit a59d10d3df
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
config/application.rb
View File

@ -38,7 +38,9 @@ module Mastodon
end
config.action_dispatch.default_headers = {
'X-Frame-Options' => 'DENY'
'X-Frame-Options' => 'DENY',
'X-Content-Type-Options' => 'nosniff',
'X-XSS-Protection' => '1; mode=block'
}
end
end