Commit d1c79d32 authored by Stephan Großberndt's avatar Stephan Großberndt
Browse files

[TASK] Set Referrer-Policy header "same-origin"

in order to prevent disclosure of Gerrit URLs to external services.
parent fcced1e3
...@@ -7,3 +7,4 @@ if ($http_user_agent ~ "monitoring-plugins") { ...@@ -7,3 +7,4 @@ if ($http_user_agent ~ "monitoring-plugins") {
rewrite ^/$ /config/server/healthcheck~status; rewrite ^/$ /config/server/healthcheck~status;
} }
add_header Referrer-Policy "same-origin" always;
\ No newline at end of file
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment