change referrer policy to same-origin

2018-02-03 14:49:00 -05:00
parent 4c1fd9a19c
commit fa361ccc5e
1 changed files with 1 additions and 1 deletions
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -96,7 +96,7 @@ Rails.application.configure do
    'X-Content-Type-Options'  => 'nosniff',
    'X-XSS-Protection'        => '1; mode=block',
    'Content-Security-Policy' => "frame-ancestors 'none'; object-src 'none'; script-src 'self' https://dev-static.glitch.social ; base-uri 'none';" , 
-    'Referrer-Policy'         => 'no-referrer, strict-origin-when-cross-origin',
+    'Referrer-Policy'         => 'same-origin',
    'Strict-Transport-Security' => 'max-age=63072000; includeSubDomains; preload',
    'X-Clacks-Overhead' => 'GNU Natalie Nguyen'