headscale/hscontrol/app.go at update_flake_lock_action

mirror of https://github.com/juanfont/headscale.git synced 2026-04-24 01:28:49 +02:00

Files

Kristoffer Dalby 0567cb6da3 app: add security headers middleware

X-Frame-Options: DENY and frame-ancestors 'none' stop clickjacking
of OIDC, register-confirm, and debug HTML pages. nosniff and no-referrer
are cheap defence-in-depth for the same surfaces.

Updates #3157

2026-04-17 16:31:49 +01:00

33 KiB

Raw Permalink Blame History

View Raw

33 KiB Raw Permalink Blame History

33 KiB

Raw Permalink Blame History