Revert "add X-Content-Type-Options: nosniff"
This reverts commit 71d5f51ae6
.
This commit is contained in:
parent
71d5f51ae6
commit
b96ee60c4c
2
csp.go
2
csp.go
@ -7,7 +7,6 @@ import (
|
|||||||
const (
|
const (
|
||||||
cspHeader = "Content-Security-Policy"
|
cspHeader = "Content-Security-Policy"
|
||||||
frameOptionsHeader = "X-Frame-Options"
|
frameOptionsHeader = "X-Frame-Options"
|
||||||
contentTypeOptionsHeader = "X-Content-Type-Options"
|
|
||||||
)
|
)
|
||||||
|
|
||||||
type csp struct {
|
type csp struct {
|
||||||
@ -27,7 +26,6 @@ func (c csp) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
w.Header().Set(frameOptionsHeader, c.opts.frame)
|
w.Header().Set(frameOptionsHeader, c.opts.frame)
|
||||||
w.Header().Set(contentTypeOptionsHeader, "nosniff")
|
|
||||||
|
|
||||||
c.h.ServeHTTP(w, r)
|
c.h.ServeHTTP(w, r)
|
||||||
}
|
}
|
||||||
|
@ -11,7 +11,6 @@ import (
|
|||||||
var testCSPHeaders = map[string]string{
|
var testCSPHeaders = map[string]string{
|
||||||
"Content-Security-Policy": "default-src 'none'; style-src 'self';",
|
"Content-Security-Policy": "default-src 'none'; style-src 'self';",
|
||||||
"X-Frame-Options": "SAMEORIGIN",
|
"X-Frame-Options": "SAMEORIGIN",
|
||||||
"X-Content-Type-Options": "nosniff",
|
|
||||||
}
|
}
|
||||||
|
|
||||||
func TestContentSecurityPolicy(t *testing.T) {
|
func TestContentSecurityPolicy(t *testing.T) {
|
||||||
|
Loading…
Reference in New Issue
Block a user