Changeset f902a63


Ignore:
Timestamp:
Dec 23, 2016 12:35:41 PM (4 years ago)
Author:
zzz <zzz@…>
Branches:
master
Children:
074c630a
Parents:
ffcd2d4
Message:

Console: Add Referrer-Policy header

Files:
15 edited

Legend:

Unmodified
Added
Removed
  • apps/i2psnark/java/src/org/klomp/snark/web/I2PSnarkServlet.java

    rffcd2d4 rf902a63  
    389389        resp.setHeader("X-XSS-Protection", "1; mode=block");
    390390        resp.setHeader("X-Content-Type-Options", "nosniff");
     391        resp.setHeader("Referrer-Policy", "no-referrer");
    391392    }
    392393
  • apps/i2ptunnel/java/src/net/i2p/i2ptunnel/localServer/LocalHTTPServer.java

    rffcd2d4 rf902a63  
    197197        out.write(("HTTP/1.1 200 OK\r\n"+
    198198                  "Content-Type: text/html; charset=UTF-8\r\n"+
     199                  "Referrer-Policy: no-referrer\r\n"+
    199200                  "Connection: close\r\n"+
    200201                  "Proxy-Connection: close\r\n"+
  • apps/i2ptunnel/jsp/edit.jsp

    rffcd2d4 rf902a63  
    77    response.setHeader("X-XSS-Protection", "1; mode=block");
    88    response.setHeader("X-Content-Type-Options", "nosniff");
     9    response.setHeader("Referrer-Policy", "no-referrer");
    910
    1011%><%@page pageEncoding="UTF-8"
  • apps/i2ptunnel/jsp/index.jsp

    rffcd2d4 rf902a63  
    1010    response.setHeader("X-XSS-Protection", "1; mode=block");
    1111    response.setHeader("X-Content-Type-Options", "nosniff");
     12    response.setHeader("Referrer-Policy", "no-referrer");
    1213
    1314%><%@page pageEncoding="UTF-8"
  • apps/i2ptunnel/jsp/wizard.jsp

    rffcd2d4 rf902a63  
    1010    response.setHeader("X-XSS-Protection", "1; mode=block");
    1111    response.setHeader("X-Content-Type-Options", "nosniff");
     12    response.setHeader("Referrer-Policy", "no-referrer");
    1213
    1314%><%@page pageEncoding="UTF-8"
  • apps/routerconsole/jsp/css.jsi

    rffcd2d4 rf902a63  
    3737      response.setHeader("X-Content-Type-Options", "nosniff");
    3838   }
     39   // https://www.w3.org/TR/referrer-policy/
     40   // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
     41   // As of Chrome 56, Firefox 50, Opera 43. "same-origin" not widely supported.
     42   response.setHeader("Referrer-Policy", "no-referrer");
    3943
    4044   String conNonceParam = request.getParameter("consoleNonce");
  • apps/susidns/src/jsp/addressbook.jsp

    rffcd2d4 rf902a63  
    3232    response.setHeader("X-XSS-Protection", "1; mode=block");
    3333    response.setHeader("X-Content-Type-Options", "nosniff");
     34    response.setHeader("Referrer-Policy", "no-referrer");
    3435
    3536%>
  • apps/susidns/src/jsp/config.jsp

    rffcd2d4 rf902a63  
    3232    response.setHeader("X-XSS-Protection", "1; mode=block");
    3333    response.setHeader("X-Content-Type-Options", "nosniff");
     34    response.setHeader("Referrer-Policy", "no-referrer");
    3435
    3536%>
  • apps/susidns/src/jsp/details.jsp

    rffcd2d4 rf902a63  
    2929    response.setHeader("X-XSS-Protection", "1; mode=block");
    3030    response.setHeader("X-Content-Type-Options", "nosniff");
     31    response.setHeader("Referrer-Policy", "no-referrer");
    3132
    3233%>
  • apps/susidns/src/jsp/index.jsp

    rffcd2d4 rf902a63  
    3232    response.setHeader("X-XSS-Protection", "1; mode=block");
    3333    response.setHeader("X-Content-Type-Options", "nosniff");
     34    response.setHeader("Referrer-Policy", "no-referrer");
    3435
    3536%>
  • apps/susidns/src/jsp/subscriptions.jsp

    rffcd2d4 rf902a63  
    3232    response.setHeader("X-XSS-Protection", "1; mode=block");
    3333    response.setHeader("X-Content-Type-Options", "nosniff");
     34    response.setHeader("Referrer-Policy", "no-referrer");
    3435
    3536%>
  • apps/susimail/src/src/i2p/susi/webmail/WebMail.java

    rffcd2d4 rf902a63  
    16381638                response.setHeader("X-XSS-Protection", "1; mode=block");
    16391639                response.setHeader("X-Content-Type-Options", "nosniff");
     1640                response.setHeader("Referrer-Policy", "no-referrer");
    16401641                RequestWrapper request = new RequestWrapper( httpRequest );
    16411642               
  • installer/resources/proxy/ahelper-conflict-header.ht

    rffcd2d4 rf902a63  
    11HTTP/1.1 409 Conflict
    22Content-Type: text/html; charset=UTF-8
     3Referrer-Policy: no-referrer
    34Cache-control: no-cache
    45Connection: close
  • installer/resources/proxy/ahelper-new-header.ht

    rffcd2d4 rf902a63  
    11HTTP/1.1 409 New Address
    22Content-Type: text/html; charset=UTF-8
     3Referrer-Policy: no-referrer
    34Cache-control: no-cache
    45Connection: close
  • installer/resources/proxy/dnfh-header.ht

    rffcd2d4 rf902a63  
    11HTTP/1.1 500 Domain Not Found
    22Content-Type: text/html; charset=UTF-8
     3Referrer-Policy: no-referrer
    34Cache-control: no-cache
    45Connection: close
Note: See TracChangeset for help on using the changeset viewer.