Fix missing default headers

lolsob-rspec
Eugen Rochko 2016-11-02 13:12:18 +01:00
parent e7035a4d39
commit 45c22cd9a4
1 changed files with 3 additions and 1 deletions

View File

@ -38,7 +38,9 @@ module Mastodon
end
config.action_dispatch.default_headers = {
'X-Frame-Options' => 'DENY'
'X-Frame-Options' => 'DENY',
'X-Content-Type-Options' => 'nosniff',
'X-XSS-Protection' => '1; mode=block'
}
end
end