photoprism/internal/server/header/security.go

package header

const (
	AccessControlAllowOrigin = "Access-Control-Allow-Origin" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin
	ContentSecurityPolicy    = "Content-Security-Policy"     // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy
	StrictTransportSecurity  = "Strict-Transport-Security"   // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
	CrossOriginOpenerPolicy  = "Cross-Origin-Opener-Policy"  // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Opener-Policy
	ReferrerPolicy           = "Referrer-Policy"             // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
	ContentTypeOptions       = "X-Content-Type-Options"      // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
	XSSProtection            = "X-XSS-Protection"            // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection
	FrameOptions             = "X-Frame-Options"             // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
	ForwardedProto           = "X-Forwarded-Proto"           // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-Proto
)
Security: Add "header" package for setting common response headers #98 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-10-09 15:16:49 +00:00			`package header`

			`const (`
Server: Add "Access-Control-Allow-Origin" to header/security.go Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-06-06 12:49:28 +00:00			`AccessControlAllowOrigin = "Access-Control-Allow-Origin" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin`
			`ContentSecurityPolicy = "Content-Security-Policy" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy`
			`StrictTransportSecurity = "Strict-Transport-Security" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security`
			`CrossOriginOpenerPolicy = "Cross-Origin-Opener-Policy" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Opener-Policy`
			`ReferrerPolicy = "Referrer-Policy" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy`
			`ContentTypeOptions = "X-Content-Type-Options" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options`
			`XSSProtection = "X-XSS-Protection" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection`
			`FrameOptions = "X-Frame-Options" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options`
			`ForwardedProto = "X-Forwarded-Proto" // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-Proto`
Security: Add "header" package for setting common response headers #98 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-10-09 15:16:49 +00:00			`)`