fix api security issues and update pages issue
This commit is contained in:
@@ -39,13 +39,10 @@ class FileServeService
|
||||
'Content-Length' => (string) $meta['size'],
|
||||
'ETag' => $meta['etag'],
|
||||
'Last-Modified' => $meta['last_modified'],
|
||||
'Cache-Control' => 'public, max-age=86400',
|
||||
'Cache-Control' => 'private, max-age=300',
|
||||
'X-Content-Type-Options' => 'nosniff',
|
||||
];
|
||||
|
||||
if ($nosniff) {
|
||||
$headers['X-Content-Type-Options'] = 'nosniff';
|
||||
}
|
||||
|
||||
return response(file_get_contents($meta['path']), 200, $headers);
|
||||
}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user