Commit 1ddaab31 authored by Juha's avatar Juha

Added csp

parent ddf2cbb3
Pipeline #24885500 passed with stage
in 0 seconds
...@@ -11,9 +11,8 @@ const cors = corsMiddleware({ ...@@ -11,9 +11,8 @@ const cors = corsMiddleware({
}); });
const app = restify.createServer({ name: 'Auth Service' }); const app = restify.createServer({ name: 'Auth Service' });
app.use(helmet({ app.use(helmet({
referrerPolicy: { contentSecurityPolicy: { directives: { defaultSrc: ["'self'"] } },
policy: 'same-origin', referrerPolicy: { policy: 'same-origin' },
},
})); }));
app.pre(cors.preflight); app.pre(cors.preflight);
app.use(cors.actual); app.use(cors.actual);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment