MirrorSave
/
linx-server
mirror of https://github.com/andreimarcu/linx-server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Revert "add X-Content-Type-Options: nosniff" 

This reverts commit 71d5f51ae6.
This commit is contained in:
mutantmonkey 2015-10-04 15:21:27 -07:00
parent 71d5f51ae6
commit b96ee60c4c
2 changed files with 2 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
csp.go
View File

@ -7,7 +7,6 @@ import (
const ( const (
cspHeader = "Content-Security-Policy" cspHeader = "Content-Security-Policy"
frameOptionsHeader = "X-Frame-Options" frameOptionsHeader = "X-Frame-Options"
contentTypeOptionsHeader = "X-Content-Type-Options"
) )
type csp struct { type csp struct {
@ -27,7 +26,6 @@ func (c csp) ServeHTTP(w http.ResponseWriter, r *http.Request) {
} }
w.Header().Set(frameOptionsHeader, c.opts.frame) w.Header().Set(frameOptionsHeader, c.opts.frame)
w.Header().Set(contentTypeOptionsHeader, "nosniff")
c.h.ServeHTTP(w, r) c.h.ServeHTTP(w, r)
} }

1
csp_test.go
View File

@ -11,7 +11,6 @@ import (
var testCSPHeaders = map[string]string{ var testCSPHeaders = map[string]string{
"Content-Security-Policy": "default-src 'none'; style-src 'self';", "Content-Security-Policy": "default-src 'none'; style-src 'self';",
"X-Frame-Options": "SAMEORIGIN", "X-Frame-Options": "SAMEORIGIN",
"X-Content-Type-Options": "nosniff",
} }
func TestContentSecurityPolicy(t *testing.T) { func TestContentSecurityPolicy(t *testing.T) {