blitzwing/cryptpad
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

reenable same-origin CSP

Browse source
This commit is contained in:
ansuz 2017-07-31 15:43:47 +02:00
parent 542d0cd17f
commit eebe473f13
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
config.example.js
View file

@ -18,7 +18,7 @@ module.exports = {
httpHeaders: {
"X-XSS-Protection": "1; mode=block",
"X-Content-Type-Options": "nosniff",
// 'X-Frame-Options': 'SAMEORIGIN',
'X-Frame-Options': 'SAMEORIGIN',
},
contentSecurity: [