Skip to content
Snippets Groups Projects
Commit 7b836201 authored by iliya's avatar iliya
Browse files

fix: updated hashes in headers

parent 4d4e48b8
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
main.go
+ 1
1
View file @ 7b836201
...@@ -27,7 +27,7 @@ func neuter(next http.Handler) http.Handler { ...@@ -27,7 +27,7 @@ func neuter(next http.Handler) http.Handler {
func securityHeaders(next http.Handler) http.Handler { func securityHeaders(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
// w.Header().Set("Content-Security-Policy", "default-src 'self' md-block.verou.me polyfill.io cdn.jsdelivr.net cdnjs.cloudflare.com cdnjs.com; style-src 'unsafe-inline' 'self' use.fontawesome.com cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net; font-src 'self' cdn.jsdelivr.net fonts.gstatic.com cdnjs.cloudflare.com; img-src 'self' data:;") // w.Header().Set("Content-Security-Policy", "default-src 'self' md-block.verou.me polyfill.io cdn.jsdelivr.net cdnjs.cloudflare.com cdnjs.com; style-src 'unsafe-inline' 'self' use.fontawesome.com cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net; font-src 'self' cdn.jsdelivr.net fonts.gstatic.com cdnjs.cloudflare.com; img-src 'self' data:;")
w.Header().Set("Content-Security-Policy", "default-src 'self'; style-src 'unsafe-inline' 'self' use.fontawesome.com cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net; font-src 'self' cdn.jsdelivr.net fonts.gstatic.com cdnjs.cloudflare.com; img-src 'self' data:; script-src md-block.verou.me polyfill.io cdn.jsdelivr.net cdnjs.cloudflare.com cdnjs.com 'sha384-I7hpstL3JZSvqmvrdu4dtRJdQVq05DXy+3i+cRxs7r6no2IqmTMV/KoOb1xUxXU9' 'sha384-TuWVYSTdx2stmLQgXnI5zlGVS+9s7dleDGxmfNhZukw82+GPQ7kRkVZKGuWtxVkP' 'sha384-tx+BAjWAc7um+Tn14q8wa5FGi5XpV8gPZ3Rm3AXYVIfvtggl2YvkM+NpIRaM+0a7' 'sha384-Z2NWi0grbE5QoxQNrdzqRklcdjkuZPtG08Tt/npaX+Cs8IICCiGw8/nyf/1KjsBF' 'sha384-ugweC/kAs9x+OyLL8KgSLbINUovPSHZvkShmFj+xFOi+uvEWDFRnOVZm5+1gWJ7r' 'sha384-EAvYp0YNvL2lBbToDbFTIrcJRDsZomMl8ILxDm9G7q2YIqWFWIjy9jmzhjJkfQ/f';") w.Header().Set("Content-Security-Policy", "default-src 'self'; style-src 'unsafe-inline' 'self' use.fontawesome.com cdnjs.cloudflare.com fonts.googleapis.com cdn.jsdelivr.net; font-src 'self' cdn.jsdelivr.net fonts.gstatic.com cdnjs.cloudflare.com; img-src 'self' data:; script-src md-block.verou.me polyfill.io cdn.jsdelivr.net cdnjs.cloudflare.com cdnjs.com 'sha384-uFK0uuuZ/1YIUwmUaiHHnl/+hm9SBZNax6A/JnhCBVtDXeku6kpoNTwRg/63E9OZ' 'sha384-Hj9Zg/2obOOm4nZ1T2Q7ptp+fYPKAgl98aaV58MOcfT5hko1L3BpRO7JBWwcre2u' 'sha384-57wT0maCBkc9SUiinG+6D34xtc0KNsctQBxmj13cH2Rgr8SRsbM7KEIG8qNnokTR' 'sha384-RCmUeGDm/0z7qjkMPO++90GnVpv4BPGiE4TdrRbppw0DHPLAwxKRfrv+517imnEk' 'sha384-RCmUeGDm/0z7qjkMPO++90GnVpv4BPGiE4TdrRbppw0DHPLAwxKRfrv+517imnEk' 'sha384-prkjKY6BK8S+/cssiOWBYWjD6jNXAQZ/37WZhrzC+i1IgDNvWYUpEgT54Hofpny3' 'sha384-X6fFs+33RbaLB2QyQKhODqTpovExqXBBIHr/1QvS6UrZRwvkb9EfCjtOnZH6FXaD';")
w.Header().Set("Strict-Transport-Security", "max-age=31536000; includeSubDomains") w.Header().Set("Strict-Transport-Security", "max-age=31536000; includeSubDomains")
w.Header().Set("X-Content-Type-Options", "nosniff") w.Header().Set("X-Content-Type-Options", "nosniff")
w.Header().Set("X-Frame-Options", "DENY") w.Header().Set("X-Frame-Options", "DENY")
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment