Sha256: e626b28908f81607fe1896864bb0ee80bef3703358a3515a20a4c2721baec642
Contents?: true
Size: 726 Bytes
Versions: 1
Compression:
Stored size: 726 Bytes
Contents
content = <<EOF
ensure_security_headers # See more: https://github.com/twitter/secureheaders
EOF
in_root do
inject_into_file 'app/controllers/application_controller.rb', content, {after: "with: :exception", verbose: false}
end
create_file "config/initializers/secure_headers.rb" do
<<-EOF
::SecureHeaders::Configuration.configure do |config|
config.hsts = {:max_age => 20.years.to_i, :include_subdomains => true}
config.x_frame_options = 'DENY'
config.x_content_type_options = "nosniff"
config.x_xss_protection = {:value => 1, :mode => 'block'}
config.csp = false
end
EOF
end
git add: 'app/controllers/application_controller.rb'
git add: 'config/initializers/secure_headers.rb'
git_commit 'Add secure headers.'
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| pah-0.0.13 | lib/pah/partials/_secure_headers.rb |