Spaces:

enzostvs
/

deepsite

Running

enzostvs HF Staff commited on 27 days ago

Commit

9defc5a

1 Parent(s): bff70f1

headers

Files changed (1) hide show

middleware.ts CHANGED Viewed

@@ -10,11 +10,11 @@ export function middleware(request: NextRequest) {
   // Add SEO and security headers
   // Only set X-Frame-Options for non-HF spaces domains
-  if (!request.nextUrl.host.includes('hf.space') && !request.nextUrl.host.includes('huggingface.co') && !request.nextUrl.host.includes('hf.co')) {
-    response.headers.set('X-Frame-Options', 'SAMEORIGIN');
-  }
-  response.headers.set('X-Content-Type-Options', 'nosniff');
-  response.headers.set('Referrer-Policy', 'strict-origin-when-cross-origin');
   // Add cache control for better performance
   if (request.nextUrl.pathname.startsWith('/_next/static')) {

   // Add SEO and security headers
   // Only set X-Frame-Options for non-HF spaces domains
+  // if (!request.nextUrl.host.includes('hf.space') && !request.nextUrl.host.includes('huggingface.co') && !request.nextUrl.host.includes('hf.co')) {
+  //   response.headers.set('X-Frame-Options', 'SAMEORIGIN');
+  // }
+  // response.headers.set('X-Content-Type-Options', 'nosniff');
+  // response.headers.set('Referrer-Policy', 'strict-origin-when-cross-origin');
   // Add cache control for better performance
   if (request.nextUrl.pathname.startsWith('/_next/static')) {