headscale/hscontrol/app_test.go at 3e2aa5814edbb7c607a7c150de11bdc8310f8a21

mirror of https://github.com/juanfont/headscale.git synced 2026-05-28 04:58:42 +09:00

Files

Kristoffer Dalby 0567cb6da3 app: add security headers middleware

X-Frame-Options: DENY and frame-ancestors 'none' stop clickjacking
of OIDC, register-confirm, and debug HTML pages. nosniff and no-referrer
are cheap defence-in-depth for the same surfaces.

Updates #3157

2026-04-17 16:31:49 +01:00

718 B

Raw Blame History

View Raw

718 B Raw Blame History

718 B

Raw Blame History