diff options
author | Christoph (Sheogorath) Kern | 2018-02-12 22:23:19 +0100 |
---|---|---|
committer | GitHub | 2018-02-12 22:23:19 +0100 |
commit | e79373883390f28b2154b4892fee7cf466add58a (patch) | |
tree | f4c3b59ac82599148883da0d35bb0a2ed491199e | |
parent | bb5e021f201c8ad83fe2736dee0faef123bfca50 (diff) | |
parent | 714504618c19bbdb8e160a2fc8c9cda32ec4ce76 (diff) |
Merge pull request #725 from SISheogorath/fix/referrerPolicy
Add referrer policy
-rw-r--r-- | app.js | 7 |
1 files changed, 7 insertions, 0 deletions
@@ -110,6 +110,13 @@ if (config.hsts.enable) { logger.info('https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security') } +// Add referrer policy to improve privacy +app.use( + helmet.referrerPolicy({ + policy: 'same-origin' + }) +) + // Generate a random nonce per request, for CSP with inline scripts app.use(csp.addNonceToLocals) |