We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 3f97cd0 commit e663833Copy full SHA for e663833
middleware.ts
@@ -1,7 +1,6 @@
1
import type { NextRequest } from 'next/server';
2
import { NextResponse } from 'next/server';
3
4
-import * as csp from 'nextjs/csp/index';
5
import * as middlewares from 'nextjs/middlewares/index';
6
7
export async function middleware(req: NextRequest) {
@@ -26,9 +25,7 @@ export async function middleware(req: NextRequest) {
26
25
27
const end = Date.now();
28
29
- const cspHeader = await csp.get(req);
30
-
31
- res.headers.append('Content-Security-Policy', cspHeader);
+ // CSP policy applied at page level instead of middleware
32
res.headers.append('Server-Timing', `middleware;dur=${ end - start }`);
33
res.headers.append('Docker-ID', process.env.HOSTNAME || '');
34
0 commit comments