Show More
| @@ -45,8 +45,8 b' class AuthenticatedHandler(web.RequestHandler):' | |||||
| 45 | def set_default_headers(self): |
|
45 | def set_default_headers(self): | |
| 46 | headers = self.settings.get('headers', {}) |
|
46 | headers = self.settings.get('headers', {}) | |
| 47 |
|
47 | |||
| 48 |
if " |
|
48 | if "Content-Security-Policy" not in headers: | |
| 49 | headers["X-Frame-Options"] = "SAMEORIGIN" |
|
49 | headers["Content-Security-Policy"] = "default-src 'self'" | |
| 50 |
|
50 | |||
| 51 | for header_name,value in headers.items() : |
|
51 | for header_name,value in headers.items() : | |
| 52 | try: |
|
52 | try: | |
General Comments 0
You need to be logged in to leave comments.
Login now