Fix KVM issue on DISABLE_XSS_PREVENTION

Fix KVM failed to load images issue introduced by incorrect condition updated by commit 0260d9d6b252d5fef81a51d4797e27a6893827f4. Tested: KVM loaded images successfully Signed-off-by: Arun P. Mohanan <arun.p.m@linux.intel.com> Change-Id: Ib753ed1d56ce2e0a9228ca52e36ffab298d21cff
author: Arun P. Mohanan <arun.p.m@linux.intel.com> 2021-03-09 16:57:47 +0300
committer: Arun P. Mohanan <arun.p.m@linux.intel.com> 2021-03-09 17:18:31 +0300
commit: cd1f3920ac3ec6605bcc3e7e45bab18e235bd33a (patch)
tree: 5ca3cdd95e555bbb70dafa37d1a8d7a8087d1894 /include/security_headers.hpp
parent: 88ad7f03b3ea7133cb253d528d03923f084f62bd (diff)
download: bmcweb-cd1f3920ac3ec6605bcc3e7e45bab18e235bd33a.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/include/security_headers.hpp b/include/security_headers.hpp
index e3c472e519..e8cd37af31 100644
--- a/include/security_headers.hpp
+++ b/include/security_headers.hpp
@@ -23,7 +23,7 @@ inline void addSecurityHeaders(const crow::Request& req [[maybe_unused]],
                                       "mode=block");
     res.addHeader("X-Content-Type-Options", "nosniff");
 
-    if (bmcwebInsecureDisableXssPrevention)
+    if (!bmcwebInsecureDisableXssPrevention)
     {
         res.addHeader("Content-Security-Policy", "default-src 'none'; "
                                                  "img-src 'self' data:; "
author	Arun P. Mohanan <arun.p.m@linux.intel.com>	2021-03-09 16:57:47 +0300
committer	Arun P. Mohanan <arun.p.m@linux.intel.com>	2021-03-09 17:18:31 +0300
commit	cd1f3920ac3ec6605bcc3e7e45bab18e235bd33a (patch)
tree	5ca3cdd95e555bbb70dafa37d1a8d7a8087d1894 /include/security_headers.hpp
parent	88ad7f03b3ea7133cb253d528d03923f084f62bd (diff)
download	bmcweb-cd1f3920ac3ec6605bcc3e7e45bab18e235bd33a.tar.xz