diff options
author | Arun P. Mohanan <arun.p.m@linux.intel.com> | 2021-03-09 16:57:47 +0300 |
---|---|---|
committer | Arun P. Mohanan <arun.p.m@linux.intel.com> | 2021-03-09 17:18:31 +0300 |
commit | cd1f3920ac3ec6605bcc3e7e45bab18e235bd33a (patch) | |
tree | 5ca3cdd95e555bbb70dafa37d1a8d7a8087d1894 /include/security_headers.hpp | |
parent | 88ad7f03b3ea7133cb253d528d03923f084f62bd (diff) | |
download | bmcweb-cd1f3920ac3ec6605bcc3e7e45bab18e235bd33a.tar.xz |
Fix KVM issue on DISABLE_XSS_PREVENTION
Fix KVM failed to load images issue introduced by incorrect condition
updated by commit 0260d9d6b252d5fef81a51d4797e27a6893827f4.
Tested:
KVM loaded images successfully
Signed-off-by: Arun P. Mohanan <arun.p.m@linux.intel.com>
Change-Id: Ib753ed1d56ce2e0a9228ca52e36ffab298d21cff
Diffstat (limited to 'include/security_headers.hpp')
-rw-r--r-- | include/security_headers.hpp | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/security_headers.hpp b/include/security_headers.hpp index e3c472e519..e8cd37af31 100644 --- a/include/security_headers.hpp +++ b/include/security_headers.hpp @@ -23,7 +23,7 @@ inline void addSecurityHeaders(const crow::Request& req [[maybe_unused]], "mode=block"); res.addHeader("X-Content-Type-Options", "nosniff"); - if (bmcwebInsecureDisableXssPrevention) + if (!bmcwebInsecureDisableXssPrevention) { res.addHeader("Content-Security-Policy", "default-src 'none'; " "img-src 'self' data:; " |