chinwag
/
chinwagsocial
2
0
Fork 0
Code Issues Pull Requests Releases 2 Wiki Activity

Add HTTP header to explicitly opt out of FLoC by default (#16036) 

Fixes #16034
This commit is contained in:
Claire 2021-04-13 23:43:41 +02:00 committed by GitHub
parent bb68a9570e
commit 71f335c2fc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
config/environments/production.rb
View File

@ -116,6 +116,7 @@ Rails.application.configure do
'X-Frame-Options' => 'DENY',
'X-Content-Type-Options' => 'nosniff',
'X-XSS-Protection' => '1; mode=block',
'Permissions-Policy' => 'interest-cohort=()',
}
config.x.otp_secret = ENV.fetch('OTP_SECRET')