mirror of
https://github.com/mastodon/mastodon.git
synced 2024-08-20 21:08:15 -07:00
Add HTTP header to explicitly opt out of FLoC by default (#16036)
Fixes #16034
This commit is contained in:
parent
bb68a9570e
commit
71f335c2fc
1 changed files with 1 additions and 0 deletions
|
@ -116,6 +116,7 @@ Rails.application.configure do
|
||||||
'X-Frame-Options' => 'DENY',
|
'X-Frame-Options' => 'DENY',
|
||||||
'X-Content-Type-Options' => 'nosniff',
|
'X-Content-Type-Options' => 'nosniff',
|
||||||
'X-XSS-Protection' => '1; mode=block',
|
'X-XSS-Protection' => '1; mode=block',
|
||||||
|
'Permissions-Policy' => 'interest-cohort=()',
|
||||||
}
|
}
|
||||||
|
|
||||||
config.x.otp_secret = ENV.fetch('OTP_SECRET')
|
config.x.otp_secret = ENV.fetch('OTP_SECRET')
|
||||||
|
|
Loading…
Reference in a new issue