iv-org-mirror/shard-kemal
1
0
Fork 0
mirror of https://gitea.invidious.io/iv-org/shard-kemal.git synced 2024-08-15 00:53:36 +00:00
Code Issues Projects Releases Packages Wiki Activity

X-Content-Type-Options = "nosniff" #379 (#380)

Browse source 
security header for older browsers to prevent content sniffing
This commit is contained in:
Cris Ward 2017-07-22 08:34:47 +01:00 committed by Serdar Dogruyol
parent 1d056b203b
commit cd5fab8c2f
1 changed files with 1 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
src/kemal/helpers/helpers.cr
View file

@ -98,6 +98,7 @@ def send_file(env, path : String, mime_type : String? = nil)
file_path = File.expand_path(path, Dir.current) file_path = File.expand_path(path, Dir.current)
mime_type ||= Kemal::Utils.mime_type(file_path) mime_type ||= Kemal::Utils.mime_type(file_path)
env.response.content_type = mime_type env.response.content_type = mime_type
env.response.headers["X-Content-Type-Options"] = "nosniff"
minsize = 860 # http://webmasters.stackexchange.com/questions/31750/what-is-recommended-minimum-object-size-for-gzip-performance-benefits ?? minsize = 860 # http://webmasters.stackexchange.com/questions/31750/what-is-recommended-minimum-object-size-for-gzip-performance-benefits ??
request_headers = env.request.headers request_headers = env.request.headers
filesize = File.size(file_path) filesize = File.size(file_path)