chore(server.js): Add CSP support

The support is disabled by default, uncomment relevant lines to enable it.
author: Igor Minar 2012-04-27 15:20:34 -0700
committer: Igor Minar 2012-04-27 22:04:16 -0700
commit: 2b1b2570344cfb55ba93b6f184bd3ee6db324419 (patch)
tree: 28dfccff9a5493fcd18cde9e6cdde06d4ca937f4 /lib
parent: 73caf76225b1a1ab41bca00340950985633f9ef9 (diff)
download: angular.js-2b1b2570344cfb55ba93b6f184bd3ee6db324419.tar.bz2
1 files changed, 3 insertions, 0 deletions
diff --git a/lib/nodeserver/server.js b/lib/nodeserver/server.js
index e9bdef5b..59765839 100644
--- a/lib/nodeserver/server.js
+++ b/lib/nodeserver/server.js
@@ -190,6 +190,9 @@ StaticServlet.prototype.sendFile_ = function(req, res, path) {
   var self = this;
   var file = fs.createReadStream(path);
   res.writeHead(200, {
+    // CSP headers, uncomment to enable CSP
+    //"X-WebKit-CSP": "default-src 'self';",
+    //"X-Content-Security-Policy": "default-src 'self'",
     'Content-Type': StaticServlet.
       MimeMap[path.split('.').pop()] || 'text/plain'
   });
author	Igor Minar	2012-04-27 15:20:34 -0700
committer	Igor Minar	2012-04-27 22:04:16 -0700
commit	2b1b2570344cfb55ba93b6f184bd3ee6db324419 (patch)
tree	28dfccff9a5493fcd18cde9e6cdde06d4ca937f4 /lib
parent	73caf76225b1a1ab41bca00340950985633f9ef9 (diff)
download	angular.js-2b1b2570344cfb55ba93b6f184bd3ee6db324419.tar.bz2