Module: Cuba::Safe::SecureHeaders

Defined in:: lib/cuba/safe/secure_headers.rb

Constant Summary collapse

HEADERS =

{
  "x-content-type-options" => "nosniff",
  "x-download-options" => "noopen",
  "x-frame-options" => "SAMEORIGIN",
  "x-permitted-cross-domain-policies" => "none",
  "x-xss-protection" => "1; mode=block",
  "strict-transport-security" => "max-age=2628000"
}

Class Method Summary collapse

.setup(app) ⇒ Object

Class Method Details

.setup(app) ⇒ `Object`



38
39
40

# File 'lib/cuba/safe/secure_headers.rb', line 38

def self.setup(app)
  app.settings[:default_headers].merge!(HEADERS)
end