From 79269b52719397822512cd2f770e04416497ac76 Mon Sep 17 00:00:00 2001 From: Kevin Heis Date: Wed, 16 Oct 2024 10:27:50 -0700 Subject: [PATCH] =?UTF-8?q?Security:=20add=20temporary=20response=20header?= =?UTF-8?q?=20to=20see=20what=20kind=20of=20requests=20=E2=80=A6=20(#52726?= =?UTF-8?q?)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- src/frame/middleware/index.ts | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/src/frame/middleware/index.ts b/src/frame/middleware/index.ts index fe11bf133f59..9e8794259476 100644 --- a/src/frame/middleware/index.ts +++ b/src/frame/middleware/index.ts @@ -214,6 +214,12 @@ export default function (app: Express) { // *** Headers *** app.set('etag', false) // We will manage our own ETags if desired + // temporary + app.use(function (req, res, next) { + res.set('x-ptcl', req.secure ? 'o' : 'x') + next() + }) + // *** Config and context for redirects *** app.use(detectLanguage) // Must come before context, breadcrumbs, find-page, handle-errors, homepages app.use(asyncMiddleware(reloadTree)) // Must come before context