nxtgauge-backend-rust

History

Ashwin Kumar Sivakumar c262e89e8f feat(gateway): add security headers middleware Add security headers to all gateway responses: - X-Frame-Options: DENY - X-Content-Type-Options: nosniff - Strict-Transport-Security: max-age=31536000; includeSubDomains - Referrer-Policy: strict-origin-when-cross-origin - Content-Security-Policy: default-src 'self' Uses tower_http::set_header::SetResponseHeaderLayer applied globally. Closes CRITICAL SECURITY GAP #2 from security review.	2026-05-31 22:55:00 +05:30
..
main.rs	feat(gateway): add security headers middleware	2026-05-31 22:55:00 +05:30

Ashwin Kumar Sivakumar c262e89e8f feat(gateway): add security headers middleware

Add security headers to all gateway responses:
- X-Frame-Options: DENY
- X-Content-Type-Options: nosniff
- Strict-Transport-Security: max-age=31536000; includeSubDomains
- Referrer-Policy: strict-origin-when-cross-origin
- Content-Security-Policy: default-src 'self'

Uses tower_http::set_header::SetResponseHeaderLayer applied globally.
Closes CRITICAL SECURITY GAP #2 from security review.

2026-05-31 22:55:00 +05:30

main.rs

feat(gateway): add security headers middleware

2026-05-31 22:55:00 +05:30