TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2025-08-11 15:49:35 +00:00
Code Issues Packages Projects Releases Wiki Activity

middleware change

Browse Source
This commit is contained in:
Max Peintner
2025-06-27 11:15:51 +02:00
parent 1fa10d411a
commit ff29ab834b
1 changed files with 6 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
apps/login/src/middleware.ts
View File

@@ -56,18 +56,16 @@ export async function middleware(request: NextRequest) {
securitySettings = await loadSecuritySettings(request);
if (securitySettings?.embeddedIframe?.enabled) {
const responseHeaders = new Headers();
const response = NextResponse.next({
request: { headers: requestHeaders },
});
responseHeaders.set(
response.headers.set(
"Content-Security-Policy",
`${DEFAULT_CSP} frame-ancestors ${securitySettings.embeddedIframe.allowedOrigins.join(" ")};`,
);
responseHeaders.delete("X-Frame-Options");
return NextResponse.next({
request: { headers: requestHeaders },
headers: responseHeaders,
});
response.headers.delete("X-Frame-Options");
return response;
}
}