Otherkin.Club
/
mastodon
1
0
Fork 0
Code Issues Releases Activity

additional secure headers

master
multiple creatures 2018-11-01 14:39:36 -05:00
parent 918f7b7478
commit 17a7aeb807
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
config/environments/production.rb
View File

@ -100,9 +100,11 @@ Rails.application.configure do
'X-Content-Type-Options' => 'nosniff',
'X-XSS-Protection' => '1; mode=block',
'Referrer-Policy' => 'same-origin',
'X-Download-Options' => 'noopen',
'X-Robots-Tag' => 'none',
'X-Permitted-Cross-Domain-Policies' => 'none',
'Strict-Transport-Security' => 'max-age=63072000; includeSubDomains; preload',
'X-Clacks-Overhead' => 'GNU Natalie Nguyen'
'X-Clacks-Overhead' => 'GNU Natalie Nguyen'
}
config.x.otp_secret = ENV.fetch('OTP_SECRET')