diff options
Diffstat (limited to 'service/pixelated/config/site.py')
-rw-r--r-- | service/pixelated/config/site.py | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/service/pixelated/config/site.py b/service/pixelated/config/site.py new file mode 100644 index 00000000..bd149914 --- /dev/null +++ b/service/pixelated/config/site.py @@ -0,0 +1,15 @@ +from twisted.web.server import Site, Request + + +class AddCSPHeaderRequest(Request): + HEADER_VALUES = "default-src 'self'; style-src 'self' 'unsafe-inline'" + + def process(self): + self.setHeader("Content-Security-Policy", self.HEADER_VALUES) + self.setHeader("X-Content-Security-Policy", self.HEADER_VALUES) + self.setHeader("X-Webkit-CSP", self.HEADER_VALUES) + Request.process(self) + + +class PixelatedSite(Site): + requestFactory = AddCSPHeaderRequest |