From 30f8e5d638dd7f6d321c152b0eeea6ddf5ed361c Mon Sep 17 00:00:00 2001 From: Marc Alexander Date: Sat, 20 Jul 2019 09:41:55 +0200 Subject: [ticket/16101] Add Referrer-Policy header to phpBB's headers PHPBB3-16101 --- phpBB/includes/functions.php | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'phpBB/includes/functions.php') diff --git a/phpBB/includes/functions.php b/phpBB/includes/functions.php index 5234c3472d..73d333bd7e 100644 --- a/phpBB/includes/functions.php +++ b/phpBB/includes/functions.php @@ -4592,12 +4592,13 @@ function page_header($page_title = '', $display_online_list = false, $item_id = if ($send_headers) { - // An array of http headers that phpbb will set. The following event may override these. + // An array of http headers that phpBB will set. The following event may override these. $http_headers += array( // application/xhtml+xml not used because of IE 'Content-type' => 'text/html; charset=UTF-8', 'Cache-Control' => 'private, no-cache="set-cookie"', 'Expires' => gmdate('D, d M Y H:i:s', time()) . ' GMT', + 'Referrer-Policy' => 'strict-origin-when-cross-origin', ); if (!empty($user->data['is_bot'])) { -- cgit v1.2.1