Commit 7c3f8a82 authored by vehjelmtvedt's avatar vehjelmtvedt
Browse files

Set X-Content-Type-Options header

parent a48bf6ab
......@@ -145,6 +145,8 @@ public class Handler extends AbstractHandler
response.addCookie(new Cookie("session",session.identity.toString()));
// Set X-Frame-Options header
response.setHeader("X-Frame-Options", "SAMEORIGIN");
// Set X-Content-Type-Options header
response.setHeader("X-Content-Type-Options", "nosniff");
final PrintWriter out = response.getWriter();
// Handle a logged in request.
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment