Merge remote-tracking branch 'glitch/main'

author: Starfall <us@starfall.systems> 2022-11-28 16:41:29 -0600
committer: Starfall <us@starfall.systems> 2022-11-28 16:41:29 -0600
commit: cb9dad90b01c9f53d1910cf128eb22200bdb9884 (patch)
tree: 1935d74f49853ed371e36cfac2d44ac33d2e8a2e /app/controllers/oauth/authorizations_controller.rb
parent: c3c3b6953f37462f26f011b6c6cbd1655d5dcbea (diff)
parent: 1a7aa37b60769a10077c585fa76ec848b6866d9a (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/app/controllers/oauth/authorizations_controller.rb b/app/controllers/oauth/authorizations_controller.rb
index 137346ed0..d6e7d0800 100644
--- a/app/controllers/oauth/authorizations_controller.rb
+++ b/app/controllers/oauth/authorizations_controller.rb
@@ -8,6 +8,10 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
   before_action :set_pack
   before_action :set_cache_headers
 
+  content_security_policy do |p|
+    p.form_action(false)
+  end
+
   include Localized
 
   private
@@ -35,6 +39,6 @@ class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
   end
 
   def set_cache_headers
-    response.headers['Cache-Control'] = 'no-cache, no-store, max-age=0, must-revalidate'
+    response.headers['Cache-Control'] = 'private, no-store'
   end
 end
author	Starfall <us@starfall.systems>	2022-11-28 16:41:29 -0600
committer	Starfall <us@starfall.systems>	2022-11-28 16:41:29 -0600
commit	cb9dad90b01c9f53d1910cf128eb22200bdb9884 (patch)
tree	1935d74f49853ed371e36cfac2d44ac33d2e8a2e /app/controllers/oauth/authorizations_controller.rb
parent	c3c3b6953f37462f26f011b6c6cbd1655d5dcbea (diff)
parent	1a7aa37b60769a10077c585fa76ec848b6866d9a (diff)