| Current Path : /var/www/bavspeed/api/backend/ |
Linux ift1.ift-informatik.de 5.4.0-216-generic #236-Ubuntu SMP Fri Apr 11 19:53:21 UTC 2025 x86_64 |
| Current File : /var/www/bavspeed/api/backend/middleware.py |
class SecurityHeadersMiddleware:
def __init__(self, get_response):
self.get_response = get_response
def __call__(self, request):
response = self.get_response(request)
response['X-Content-Type-Options'] = 'nosniff'
response['X-Frame-Options'] = 'DENY'
response['Content-Security-Policy'] = "default-src 'self'"
response['Strict-Transport-Security'] = 'max-age=31536000; includeSubDomains'
return response