10 lines
430 B
JavaScript
10 lines
430 B
JavaScript
// src/middleware.js
|
|
export async function onRequest(context, next) {
|
|
const response = await next(); // Get the response from the next middleware or page
|
|
response.headers.set(
|
|
'Content-Security-Policy',
|
|
"default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self'; object-src 'none'; frame-ancestors 'none';"
|
|
);
|
|
return response; // Return the modified response
|
|
}
|