michaelh/hugo-academic-mirror
1
0
Fork 0
mirror of https://github.com/gcushen/hugo-academic.git synced 2025-07-26 03:00:50 +02:00
Code Issues Projects Releases Packages Wiki Activity

feat(security): add Referrer-Policy

Browse source 
Also, support multi-line CSP and Permissions policy
This commit is contained in:
George Cushen 2021-01-27 17:56:25 +00:00
commit 9e984eca83
1 changed files with 3 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
wowchemy/layouts/index.headers
View file

@ -9,8 +9,9 @@
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
{{with $csp_policy}}Content-Security-Policy{{if $csp_report_only}}-Report-Only{{end}}: {{.}}{{end}}
{{with $permissions_policy}}Permissions-Policy: {{.}}{{end}}
Referrer-Policy: strict-origin-when-cross-origin
{{with $csp_policy}}Content-Security-Policy{{if $csp_report_only}}-Report-Only{{end}}: {{replaceRE "(\\s\\s+)" " " (trim . " ")}}{{end}}
{{with $permissions_policy}}Permissions-Policy: {{replaceRE "(\\s\\s+)" " " (trim . " ")}}{{end}}
/index.webmanifest
Content-Type: application/manifest+json
/index.xml