diff options
author | Morten Tokle <mortent@oath.com> | 2018-06-13 08:19:11 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2018-06-13 08:19:11 +0200 |
commit | a8d7904fdeed186ae1d2e992aac866270931bbcb (patch) | |
tree | 1258db2ad4fdb5e3e885368748924f49ffd70f79 /jdisc-security-filters | |
parent | 047ea0bed80966554e29a1db1b35361d946a3866 (diff) |
Add X-Content-Type-Options header
Diffstat (limited to 'jdisc-security-filters')
-rw-r--r-- | jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/misc/SecurityHeadersResponseFilter.java | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/misc/SecurityHeadersResponseFilter.java b/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/misc/SecurityHeadersResponseFilter.java index f50e7454f19..09d02d66b1f 100644 --- a/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/misc/SecurityHeadersResponseFilter.java +++ b/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/misc/SecurityHeadersResponseFilter.java @@ -17,5 +17,6 @@ public class SecurityHeadersResponseFilter implements SecurityResponseFilter { response.setHeader("Cache-control", "no-store"); response.setHeader("Pragma", "no-cache"); response.setHeader("Strict-Transport-Security", "max-age=31536000; includeSubDomains"); + response.setHeader("X-Content-Type-Options", "nosniff"); } } |