For security purpose, I've added "X-Content-Type-Options" value="nosniff" as a response header. However after adding this, none of the javscripts(in this case) which is locally hosted are executed.
Any suggestions on how put an exceptions for specific scripts OR workaround to execute run scripts having "X-Content-Type-Options" value="nosniff".
Thanks in advance.
Aucun commentaire:
Enregistrer un commentaire