0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2024-12-16 20:26:19 -05:00

fix(core): remove the COOP policy (#5133)

remove the COOP policy
This commit is contained in:
simeng-li 2023-12-22 10:28:48 +08:00 committed by GitHub
parent b40bae9c5b
commit 9faa9841c5
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -56,6 +56,7 @@ export default function koaSecurityHeaders<StateT, ContextT, ResponseBodyT>(
const basicSecurityHeaderSettings: HelmetOptions = {
contentSecurityPolicy: false, // Exclusively set per app
crossOriginOpenerPolicy: false, // Allow cross origin opener, as some apps rely on popup window for the sign-in flow
crossOriginEmbedderPolicy: { policy: 'credentialless' },
dnsPrefetchControl: false,
referrerPolicy: {