luna
/
kemal
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

X-Content-Type-Options = "nosniff" #379 (#380) 

security header for older browsers to prevent content sniffing
This commit is contained in:
Cris Ward 2017-07-22 08:34:47 +01:00 committed by Serdar Dogruyol
parent 1d056b203b
commit cd5fab8c2f
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
src/kemal/helpers/helpers.cr
View File

@ -98,6 +98,7 @@ def send_file(env, path : String, mime_type : String? = nil)
file_path = File.expand_path(path, Dir.current)
mime_type ||= Kemal::Utils.mime_type(file_path)
env.response.content_type = mime_type
env.response.headers["X-Content-Type-Options"] = "nosniff"
minsize = 860 # http://webmasters.stackexchange.com/questions/31750/what-is-recommended-minimum-object-size-for-gzip-performance-benefits ??
request_headers = env.request.headers
filesize = File.size(file_path)