Skip to content

Commit

Permalink
Change referrer-policy header default value
Browse files Browse the repository at this point in the history
  • Loading branch information
@bepsvpt
bepsvpt committed May 16, 2017
1 parent 540b381 commit 8367d29
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion config/secure-headers.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -61,7 +61,7 @@
* 'same-origin', 'strict-origin', 'strict-origin-when-cross-origin', 'unsafe-url'
*/

'referrer-policy' => 'strict-origin-when-cross-origin',
'referrer-policy' => 'no-referrer',

/*
* HTTP Strict Transport Security
Expand Down
2 changes: 1 addition & 1 deletion tests/SecureHeadersTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ public function test_send_headers()
$headers = xdebug_get_headers();

$this->assertContains('X-Content-Type-Options: nosniff', $headers);
$this->assertContains('Referrer-Policy: strict-origin-when-cross-origin', $headers);
$this->assertContains('Referrer-Policy: no-referrer', $headers);
}

public function test_disable_header()
Expand Down

0 comments on commit 8367d29

Please sign in to comment.