Merge branch 'main' into glitch-soc/merge-upstream

Conflicts: - `config/environments/production.rb`: Upstream changed a header but we had different default headers. Applied the same change, and also dropped HSTS headers redundant with Rails'.
author: Claire <claire.github-309c@sitedethib.com> 2022-01-26 22:32:21 +0100
committer: Claire <claire.github-309c@sitedethib.com> 2022-01-26 22:32:21 +0100
commit: ad6ddb9bdd3ceae3f9d5dde7b351081f0dfa2a9a (patch)
tree: 70af45c80f67391c46c55425c64b33da9467fedb /config/environments
parent: 58930199379305e718d57b48488cc752b452e72a (diff)
parent: 166cc5b89d60f8e2e1f748df86ff8a9003a4876e (diff)
1 files changed, 1 insertions, 2 deletions
diff --git a/config/environments/production.rb b/config/environments/production.rb
index b72d1b342..ce3c41799 100644
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -118,10 +118,9 @@ Rails.application.configure do
     'Server'                  => 'Mastodon',
     'X-Frame-Options'         => 'DENY',
     'X-Content-Type-Options'  => 'nosniff',
-    'X-XSS-Protection'        => '1; mode=block',
+    'X-XSS-Protection'        => '0',
     'Permissions-Policy'      => 'interest-cohort=()',
     'Referrer-Policy'         => 'same-origin',
-    'Strict-Transport-Security' => 'max-age=63072000; includeSubDomains; preload',
     'X-Clacks-Overhead' => 'GNU Natalie Nguyen'
   }
author	Claire <claire.github-309c@sitedethib.com>	2022-01-26 22:32:21 +0100
committer	Claire <claire.github-309c@sitedethib.com>	2022-01-26 22:32:21 +0100
commit	ad6ddb9bdd3ceae3f9d5dde7b351081f0dfa2a9a (patch)
tree	70af45c80f67391c46c55425c64b33da9467fedb /config/environments
parent	58930199379305e718d57b48488cc752b452e72a (diff)
parent	166cc5b89d60f8e2e1f748df86ff8a9003a4876e (diff)