pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Format code

Browse Source
This commit is contained in:
George Drummond
2018-12-13 13:59:54 -05:00
parent ec09c27a38
commit 3bff2fcb23
1 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
atst/app.py
View File

@@ -102,10 +102,14 @@ def set_default_headers(app):
response.headers["X-Frame-Options"] = "SAMEORIGIN" response.headers["X-Frame-Options"] = "SAMEORIGIN"
response.headers["X-XSS-Protection"] = "1; mode=block" response.headers["X-XSS-Protection"] = "1; mode=block"
if ENV == 'dev': if ENV == "dev":
response.headers["Content-Security-Policy"] = "default-src 'self' 'unsafe-eval'; connect-src *" response.headers[
"Content-Security-Policy"
] = "default-src 'self' 'unsafe-eval'; connect-src *"
else: else:
response.headers["Content-Security-Policy"] = "default-src 'self' 'unsafe-eval'" response.headers[
"Content-Security-Policy"
] = "default-src 'self' 'unsafe-eval'"
return response return response