docker: enable SECURE_BROWSER_XSS_FILTER

This is a rudimentary extra protection against XSS, we might as well enable it. Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com>
2025-07-05 13:14:46 +02:00 · 2019-01-15 11:05:32 +13:00 · 2019-01-15 11:05:32 +13:00 · c38d1c37a1
commit c38d1c37a1
parent df189e3455
1 changed files with 2 additions and 0 deletions
--- a/docker/settings.py
+++ b/docker/settings.py
@ -290,3 +290,5 @@ TOOLS_LOG_DIR = ""
 USE_X_FORWARDED_HOST = True
 ALLOWED_HOSTS = [os.getenv('HOSTNAME', 'layers.test')]
 SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
+SECURE_BROWSER_XSS_FILTER = True
+