kylefang/web
1
0
Fork 0
mirror of https://github.com/placeholder-soft/web.git synced 2026-04-28 19:05:28 +08:00
Code Issues Packages Projects Releases Wiki Activity

Update Cross-Origin-Opener-Policy header (#511)

Browse Source
This commit is contained in:
Arjun Dureja
2024-05-23 12:32:23 -04:00
committed by GitHub
parent 05f780ff31
commit fd46c9080e
3 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
apps/base-docs/server.js
View File

@@ -431,7 +431,7 @@ app.use(
setHeaders: function (res) {
res.setHeader('cache-control', 'no-store');
res.setHeader('content-security-policy', cspObjectToString);
res.setHeader('cross-origin-opener-policy', 'same-origin');
res.setHeader('cross-origin-opener-policy', 'same-origin-allow-popups');
res.setHeader('referrer-policy', 'strict-origin-when-cross-origin');
res.setHeader('strict-transport-security', 'max-age=63072000; includeSubDomains; preload');
res.setHeader('x-content-type-options', 'nosniff');

2
apps/bridge/next.config.js
View File

@@ -103,7 +103,7 @@ const securityHeaders = [
},
{
key: 'cross-origin-opener-policy',
value: 'same-origin',
value: 'same-origin-allow-popups',
},
{
key: 'referrer-policy',

2
apps/web/next.config.js
View File

@@ -110,7 +110,7 @@ const securityHeaders = [
},
{
key: 'cross-origin-opener-policy',
value: 'same-origin',
value: 'same-origin-allow-popups',
},
{
key: 'referrer-policy',