Add additional security headers

2023-10-19 16:50:13 -04:00 · 2023-10-19 16:50:13 -04:00 · b5135ce6bf
commit b5135ce6bf
parent 6f250ca0b5
1 changed files with 3 additions and 0 deletions
--- a/functions/_middleware.ts
+++ b/functions/_middleware.ts
@ -102,10 +102,13 @@ async function setHeaders(context: RequestContext) {
    "Wintervale",
  ];
  response.headers.set("Permissions-Policy", "clipboard-write=(self), interest-cohort=()");
  response.headers.set("Referrer-Policy", "same-origin");
  response.headers.set(
    "RTV",
    rtvValues[Math.round(Math.random() * (rtvValues.length - 1))]
  );
  response.headers.set("X-Frame-Options", "SAMEORIGIN");
  response.headers.set("X-XSS-Protection", "1; mode=block");
  return response;