Skip to content

Commit

Permalink
fix: add missing parameters on Cross-Origin-Embedder-Policy
Browse files Browse the repository at this point in the history
  • Loading branch information
Jesse Anderson committed Feb 2, 2022
1 parent ae1adbc commit 6b9dc07
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 1 deletion.
2 changes: 1 addition & 1 deletion src/headers/cross-origin-embedder-policy/index.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ import type { CrossOriginEmbedderPolicy } from './types';
const HEADER_NAME = 'Cross-Origin-Embedder-Policy';

const validation = directiveValidation(HEADER_NAME, {
allowedDirectives: ['require-corp'],
allowedDirectives: ['require-corp', 'unsafe-none', 'credentialless'],
});

/**
Expand Down
4 changes: 4 additions & 0 deletions src/headers/cross-origin-embedder-policy/types.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,4 +13,8 @@ export interface CrossOriginEmbedderPolicy extends FortifyHeader {
* Allows the document to fetch cross-origin resources without giving explicit permission through the CORS protocol or the Cross-Origin-Resource-Policy header.
*/
unsafeNone?: boolean;
/**
* Test for google
*/
credentialless?: boolean;
}

0 comments on commit 6b9dc07

Please sign in to comment.