Module: Cuba::Safe::SecureHeaders

Defined in:: lib/cuba/safe/secure_headers.rb

Constant Summary collapse

HEADERS =

{
  "X-Content-Type-Options" => "nosniff",
  "X-Download-Options" => "noopen",
  "X-Frame-Options" => "SAMEORIGIN",
  "X-Permitted-Cross-Domain-Policies" => "none",
  "X-XSS-Protection" => "1; mode=block",
  "Strict-Transport-Security" => "max-age=2628000"
}

Class Method Summary collapse

.setup(app) ⇒ Object

Class Method Details

.setup(app) ⇒ `Object`



35
36
37

# File 'lib/cuba/safe/secure_headers.rb', line 35

def self.setup(app)
  app.settings[:default_headers].merge!(HEADERS)
end