aboutsummaryrefslogtreecommitdiffhomepage
path: root/server.ts
diff options
context:
space:
mode:
authorChocobozzz <me@florianbigard.com>2021-04-12 15:33:54 +0200
committerChocobozzz <me@florianbigard.com>2021-04-12 15:33:54 +0200
commit8155db669baff9aac5617a7aaf68dd35823ed7c9 (patch)
tree9a7575cd5d6bc9f4905d02c4a9aedd603ec2ec83 /server.ts
parentc24822a8fdbc0647aa983fe7d784864ec3b9b854 (diff)
downloadPeerTube-8155db669baff9aac5617a7aaf68dd35823ed7c9.tar.gz
PeerTube-8155db669baff9aac5617a7aaf68dd35823ed7c9.tar.zst
PeerTube-8155db669baff9aac5617a7aaf68dd35823ed7c9.zip
Dissociate frameguard from csp
Diffstat (limited to 'server.ts')
-rw-r--r--server.ts10
1 files changed, 5 insertions, 5 deletions
diff --git a/server.ts b/server.ts
index f44202c9a..2531080a3 100644
--- a/server.ts
+++ b/server.ts
@@ -59,11 +59,11 @@ import { baseCSP } from './server/middlewares/csp'
59 59
60if (CONFIG.CSP.ENABLED) { 60if (CONFIG.CSP.ENABLED) {
61 app.use(baseCSP) 61 app.use(baseCSP)
62 app.use(helmet({ 62}
63 frameguard: { 63
64 action: 'deny' // we only allow it for /videos/embed, see server/controllers/client.ts 64if (CONFIG.SECURITY.FRAMEGUARD.ENABLED) {
65 }, 65 app.use(helmet.frameguard({
66 hsts: false 66 action: 'deny' // we only allow it for /videos/embed, see server/controllers/client.ts
67 })) 67 }))
68} 68}
69 69
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 00:57:57 +0000