andika/membership-be
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

- Fixed MutableHeaders bug- Disable API docs in production- CORS diagnostic endpoint- Security headers + CORS middlewareMust have ENVIRONMENT=production and CORS_ORIGINS=... in .env file

Browse Source
This commit is contained in:
Koncept Kit
2026-01-07 14:21:47 +07:00
parent a74f161efa
commit adbfa7a3c8
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
server.py
View File

@@ -6340,8 +6340,9 @@ async def add_security_headers(request: Request, call_next):
for header, value in security_headers.items(): for header, value in security_headers.items():
response.headers[header] = value response.headers[header] = value
# Remove server identification headers # Remove server identification headers (use del, not pop for MutableHeaders)
response.headers.pop("Server", None) if "Server" in response.headers:
del response.headers["Server"]
return response return response