UNPKG

next-secure-headers

Version:

Sets secure response headers for Next.js.

github.com/jagaapple/next-secure-headers

jagaapple/next-secure-headers

27 lines (26 loc) 1.08 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.createFrameGuardHeader = exports.createXFrameOptionsHeaderValue = void 0; const shared_1 = require("./shared"); const headerName = "X-Frame-Options"; const createXFrameOptionsHeaderValue = (option, strictURIEncoder = shared_1.encodeStrictURI) => { if (option == undefined) return "deny"; if (option === false) return; if (option === "deny") return option; if (option === "sameorigin") return option; if (Array.isArray(option)) { if (option[0] === "allow-from") return `${option[0]} ${strictURIEncoder(option[1].uri)}`; } throw new Error(`Invalid value for ${headerName}: ${option}`); }; exports.createXFrameOptionsHeaderValue = createXFrameOptionsHeaderValue; const createFrameGuardHeader = (option, headerValueCreator = exports.createXFrameOptionsHeaderValue) => { const value = headerValueCreator(option); return { name: headerName, value }; }; exports.createFrameGuardHeader = createFrameGuardHeader;