Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-12-24 01:10:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

added helmet for better standard of protection across the board

Browse Source
This commit is contained in:
Julian Lam
2018-02-21 14:13:20 -05:00
parent c7b73b4e41
commit 98b0bdc7e1
3 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
src/middleware/headers.js
View File

@@ -11,7 +11,6 @@ module.exports = function (middleware) {
'X-Frame-Options': meta.config['allow-from-uri'] ? 'ALLOW-FROM ' + encodeURI(meta.config['allow-from-uri']) : 'SAMEORIGIN',
'Access-Control-Allow-Methods': encodeURI(meta.config['access-control-allow-methods'] || ''),
'Access-Control-Allow-Headers': encodeURI(meta.config['access-control-allow-headers'] || ''),
'Referrer-Policy': 'strict-origin-when-cross-origin', // consider using helmet?
};
if (meta.config['access-control-allow-origin']) {