Skip to content

Commit

Permalink
fix: set Referrer-Policy header to strict-origin-when-cross-origin
Browse files Browse the repository at this point in the history
  • Loading branch information
@wKovacs64
wKovacs64 committed Apr 24, 2022
1 parent 9a0a387 commit 86c037c
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion netlify.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@
X-XSS-Protection = "1; mode=block"
Content-Security-Policy = "default-src 'self'; connect-src 'self' https://api.pwnedpasswords.com; img-src data: https:; script-src 'self' 'unsafe-inline'; style-src 'self'; worker-src 'self'; object-src 'none'"
Permissions-Policy = "geolocation=(), camera=(), microphone=(), payment=(), usb=()"
Referrer-Policy = "no-referrer-when-downgrade"
Referrer-Policy = "strict-origin-when-cross-origin"
Expect-CT = "enforce, max-age=3600"

[[headers]]
Expand Down

0 comments on commit 86c037c

Please sign in to comment.