dahjah/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2025-12-16 04:09:03 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Make sure the icons are displayed correctly in desktop clients (#5469)
Some checks are pending
Build / Build and Test ${{ matrix.channel }} (msrv) (push) Waiting to run
Details
Build / Build and Test ${{ matrix.channel }} (rust-toolchain) (push) Waiting to run
Details
Hadolint / Validate Dockerfile syntax (push) Waiting to run
Details
Release / skip_check (push) Waiting to run
Details
Release / docker-build (alpine) (push) Blocked by required conditions
Details
Release / docker-build (debian) (push) Blocked by required conditions
Details
trivy / Check (push) Waiting to run
Details

Browse Source
This commit is contained in:
Win‮8201‭Linux‬ 2025-01-28 02:29:24 +09:00 committed by GitHub
parent 2c549984c0
commit 1b46c80389
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/util.rs
View File

@ -55,7 +55,10 @@ impl Fairing for AppHeaders {
res.set_raw_header("Referrer-Policy", "same-origin"); res.set_raw_header("Referrer-Policy", "same-origin");
res.set_raw_header("X-Content-Type-Options", "nosniff"); res.set_raw_header("X-Content-Type-Options", "nosniff");
res.set_raw_header("X-Robots-Tag", "noindex, nofollow"); res.set_raw_header("X-Robots-Tag", "noindex, nofollow");
res.set_raw_header("Cross-Origin-Resource-Policy", "same-origin");
if !res.headers().get_one("Content-Type").is_some_and(|v| v.starts_with("image/")) {
res.set_raw_header("Cross-Origin-Resource-Policy", "same-origin");
}
// Obsolete in modern browsers, unsafe (XS-Leak), and largely replaced by CSP // Obsolete in modern browsers, unsafe (XS-Leak), and largely replaced by CSP
res.set_raw_header("X-XSS-Protection", "0"); res.set_raw_header("X-XSS-Protection", "0");