Skip to content
Snippets Groups Projects
Unverified Commit cff7d967 authored by Claire's avatar Claire Committed by GitHub
Browse files

Fix CSRF protection (#23037)

Fix regression from #23014
parent aefefc74
No related branches found
No related tags found
No related merge requests found
......@@ -138,7 +138,7 @@ Rails.application.configure do
'X-Content-Type-Options' => 'nosniff',
'X-XSS-Protection' => '0',
'Permissions-Policy' => 'interest-cohort=()',
'Referrer-Policy' => 'no-referrer',
'Referrer-Policy' => 'same-origin',
}
config.x.otp_secret = ENV.fetch('OTP_SECRET')
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment