Added a mitigation for polyglot attacks.
.panel_floater is now floated to the right on Nox.
This commit is contained in:
parent
01a692ab5b
commit
b8681524f3
|
@ -293,6 +293,7 @@ func preRoute(w http.ResponseWriter, r *http.Request) (User, bool) {
|
|||
h.Set("X-Frame-Options", "deny")
|
||||
h.Set("X-XSS-Protection", "1; mode=block") // TODO: Remove when we add a CSP? CSP's are horrendously glitchy things, tread with caution before removing
|
||||
// TODO: Set the content policy header
|
||||
h.Set("X-Content-Type-Options", "nosniff")
|
||||
|
||||
return *usercpy, true
|
||||
}
|
||||
|
|
|
@ -83,7 +83,7 @@
|
|||
padding: 12px;
|
||||
}
|
||||
|
||||
.to_right, .panel_buttons {
|
||||
.to_right, .panel_buttons, .panel_floater {
|
||||
margin-left: auto;
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue