git.shiar.nl / minimedit.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
page: referrer policy to include details cross-origin
[minimedit.git] / page.php
diff --git a/page.php b/page.php
index 8a37533f4c6e78e928980c5a92454f3e589be83d..9f9ce626b0236e7ee5a805911861828422ae8e83 100644 (file)
--- a/page.php
+++ b/page.php
@@ -50,6 +50,7 @@ header(sprintf('Content-Security-Policy: %s', implode('; ', [
        "base-uri 'self'", # only local pages
        "frame-ancestors 'none'", # prevent malicious embedding
 ])));
+header('Referrer-Policy: no-referrer-when-downgrade');
 
 $Page->place += [
        'user'  => $User->login ?: '',
MinimEdit - databaseless cms with only a bit of php