Initial secure_headers config after some testing.

cc0d15a8 · Connor Shea · c367fa8e · cc0d15a8 · cc0d15a8
Commit cc0d15a8 authored Jun 17, 2016 by Connor Shea
Hide whitespace changes
Inline Side-by-side

Showing with 7 additions and 0 deletions

Gemfile Gemfile +3 -0

Gemfile.lock Gemfile.lock +4 -0

No files found.
--- a/Gemfile
+++ b/Gemfile
@@ -349,3 +349,6 @@ gem 'health_check', '~> 2.1.0'
 # System information
 gem 'vmstat', '~> 2.1.0'
 gem 'sys-filesystem', '~> 1.1.6'
+# Secure headers for Content Security Policy
+gem 'secure_headers', '~> 3.3'
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -645,6 +645,8 @@ GEM
    sdoc (0.3.20)
      json (>= 1.1.3)
      rdoc (~> 3.10)
+    secure_headers (3.3.2)
+      useragent
    seed-fu (2.3.6)
      activerecord (>= 3.1)
      activesupport (>= 3.1)
@@ -767,6 +769,7 @@ GEM
      get_process_mem (~> 0)
      unicorn (>= 4, < 6)
    uniform_notifier (1.9.0)
+    useragent (0.16.7)
    uuid (2.3.8)
      macaddr (~> 1.0)
    version_sorter (2.0.0)
@@ -944,6 +947,7 @@ DEPENDENCIES
  sass-rails (~> 5.0.0)
  scss_lint (~> 0.47.0)
  sdoc (~> 0.3.20)
+  secure_headers (~> 3.3)
  seed-fu (~> 2.3.5)
  select2-rails (~> 3.5.9)
  sentry-raven (~> 1.1.0)