gearheads
/
mastodon
Archived
2
0
Fork 0

Fix missing default headers

gh/stable
Eugen Rochko 2016-11-02 13:12:18 +01:00
parent 9467b900a2
commit a59d10d3df
1 changed files with 3 additions and 1 deletions

View File

@ -38,7 +38,9 @@ module Mastodon
end end
config.action_dispatch.default_headers = { config.action_dispatch.default_headers = {
'X-Frame-Options' => 'DENY' 'X-Frame-Options' => 'DENY',
'X-Content-Type-Options' => 'nosniff',
'X-XSS-Protection' => '1; mode=block'
} }
end end
end end