Merge pull request #114 from vin01/master

Adding referrer policy security header
2026-01-15 12:14:46 +00:00 · 2018-01-29 21:26:33 -08:00
parent a2d7517ca0 ac056d17af
commit 4c87861642
1 changed files with 1 additions and 0 deletions
--- a/revel/skeleton/app/init.go
+++ b/revel/skeleton/app/init.go
@@ -44,6 +44,7 @@ var HeaderFilter = func(c *revel.Controller, fc []revel.Filter) {
 	c.Response.Out.Header().Add("X-Frame-Options", "SAMEORIGIN")
 	c.Response.Out.Header().Add("X-XSS-Protection", "1; mode=block")
 	c.Response.Out.Header().Add("X-Content-Type-Options", "nosniff")
+	c.Response.Out.Header().Add("Referrer-Policy", "strict-origin-when-cross-origin")

 	fc[0](c, fc[1:]) // Execute the next filter stage.
 }