simono41/picture-uploader
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

add CSP Header

Browse source
This commit is contained in:
Simon Rieger 2024-03-08 15:49:19 +01:00
parent 888036cf6c
commit 955e2775d3
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
go/main.go
View file

@ -52,6 +52,9 @@ func homeHandler(w http.ResponseWriter, r *http.Request) {
}
func uploadHandler(w http.ResponseWriter, r *http.Request) {
// Setzen der Content Security Policy
w.Header().Set("Content-Security-Policy", "default-src 'self'; script-src 'self'; object-src 'none';")
mu.Lock()
defer mu.Unlock()
@ -155,6 +158,9 @@ func uploadHandler(w http.ResponseWriter, r *http.Request) {
}
func imageHandler(w http.ResponseWriter, r *http.Request) {
// Setzen der Content Security Policy
w.Header().Set("Content-Security-Policy", "default-src 'self'; script-src 'self'; object-src 'none';")
// Extrahieren des Bildnamens aus dem URL-Pfad
imagePath := "./uploads/" + r.URL.Path[len("/image/"):]
@ -175,6 +181,9 @@ func imageHandler(w http.ResponseWriter, r *http.Request) {
}
func viewHandler(w http.ResponseWriter, r *http.Request) {
// Setzen der Content Security Policy
w.Header().Set("Content-Security-Policy", "default-src 'self'; script-src 'self'; object-src 'none';")
filePath := r.URL.Path[len("/view/"):]
imagePath := "./uploads/" + filePath