arian/navidrome
1
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

Disable CSP for now

Browse Source
This commit is contained in:
Deluan
2020-10-06 11:24:59 -04:00
parent 39cb3455db
commit 92b7ef40af
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
server/middlewares.go
+5 -5
View File
@@ -70,11 +70,11 @@ func robotsTXT(fs http.FileSystem) func(next http.Handler) http.Handler {
func secureMiddleware() func(h http.Handler) http.Handler { func secureMiddleware() func(h http.Handler) http.Handler {
sec := secure.New(secure.Options{ sec := secure.New(secure.Options{
ContentTypeNosniff: true, ContentTypeNosniff: true,
FrameDeny: true, FrameDeny: true,
ReferrerPolicy: "same-origin", ReferrerPolicy: "same-origin",
FeaturePolicy: "autoplay 'none'; camera: 'none'; display-capture 'none'; microphone: 'none'; usb: 'none'", FeaturePolicy: "autoplay 'none'; camera: 'none'; display-capture 'none'; microphone: 'none'; usb: 'none'",
ContentSecurityPolicy: "script-src 'self' 'unsafe-inline'", //ContentSecurityPolicy: "script-src 'self' 'unsafe-inline'",
}) })
return sec.Handler return sec.Handler
} }