header("Cache-Control", "no-cache")
header("Expires", "0")
end
-
+ if not context.headers["x-frame-options"] then
+ header("X-Frame-Options", "SAMEORIGIN")
+ end
+ if not context.headers["x-xss-protection"] then
+ header("X-XSS-Protection", "1; mode=block")
+ end
+ if not context.headers["x-content-type-options"] then
+ header("X-Content-Type-Options", "nosniff")
+ end
context.eoh = true
coroutine.yield(3)
return table.concat(s, "")
end
-urldecode = protocol.urldecode
+urldecode = util.urldecode
-urlencode = protocol.urlencode
+urlencode = util.urlencode
function write_json(x)
util.serialize_json(x, write)