photoprism/internal/server/security.go

package server

import (
	"github.com/gin-gonic/gin"

	"github.com/photoprism/photoprism/internal/config"
	"github.com/photoprism/photoprism/internal/server/header"
)

// Security adds common HTTP security headers to the response.
var Security = func(conf *config.Config) gin.HandlerFunc {
	return func(c *gin.Context) {
		c.Writer.Header().Set(header.ContentSecurityPolicy, header.DefaultContentSecurityPolicy)
		c.Writer.Header().Set(header.FrameOptions, header.DefaultFrameOptions)
	}
}
Backend: Add HTTP security middleware 2021-10-17 16:48:53 +02:00			`package server`

			`import (`
			`"github.com/gin-gonic/gin"`
Auth: Session and ACL enhancements #98 #1746 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-09-28 09:01:17 +02:00
Security: Add "header" package for setting common response headers #98 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-10-09 17:16:49 +02:00			`"github.com/photoprism/photoprism/internal/config"`
			`"github.com/photoprism/photoprism/internal/server/header"`
Backend: Add HTTP security middleware 2021-10-17 16:48:53 +02:00			`)`

Security: Add "header" package for setting common response headers #98 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-10-09 17:16:49 +02:00			`// Security adds common HTTP security headers to the response.`
			`var Security = func(conf *config.Config) gin.HandlerFunc {`
Backend: Add HTTP security middleware 2021-10-17 16:48:53 +02:00			`return func(c *gin.Context) {`
Security: Add "header" package for setting common response headers #98 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-10-09 17:16:49 +02:00			`c.Writer.Header().Set(header.ContentSecurityPolicy, header.DefaultContentSecurityPolicy)`
			`c.Writer.Header().Set(header.FrameOptions, header.DefaultFrameOptions)`
Backend: Add HTTP security middleware 2021-10-17 16:48:53 +02:00			`}`
			`}`