SCHISANDRA/schisandra-album-cloud-microservices
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
97ca3fc7b0d2d5a1e5c4872e7bd18d05c0fa78c7
schisandra-album-cloud-micr…/common/middleware/security_headers_middleware.go
landaiqing 97ca3fc7b0 🎉 init
2024-11-12 17:00:16 +08:00

14 lines
726 B
Go
Raw Blame History

package middleware
import "net/http"
func SecurityHeadersMiddleware(w http.ResponseWriter, r *http.Request) {
r.Header.Set("X-Frame-Options", "DENY")
r.Header.Set("Content-Security-Policy", "default-src 'self'; connect-src *; font-src *; script-src-elem * 'unsafe-inline'; img-src * data:; style-src * 'unsafe-inline';")
r.Header.Set("X-XSS-Protection", "1; mode=block")
r.Header.Set("Strict-Transport-Security", "max-age=31536000; includeSubDomains; preload")
r.Header.Set("Referrer-Policy", "strict-origin")
r.Header.Set("X-Content-Type-Options", "nosniff")
r.Header.Set("Permissions-Policy", "geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()")
}
Reference in New Issue View Git Blame Copy Permalink