aviat
/
ion
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Remove default CSP header

This commit is contained in:
Timothy Warren 2017-04-12 16:38:23 -04:00
parent a00ec4473c
commit f5b29e8f17
1 changed files with 0 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
src/View/HttpView.php
View File

@ -96,7 +96,6 @@ class HttpView extends BaseView {
}
$this->response = $this->response->withHeader('Content-type', "{$this->contentType};charset=utf-8")
->withHeader('Content-Security-Policy', "script-src 'self'")
->withHeader('X-Content-Type-Options', 'nosniff')
->withHeader('X-XSS-Protection', '1;mode=block')
->withHeader('X-Frame-Options', 'SAMEORIGIN');