permission policy

2025-07-25 20:24:38 +02:00
parent ddbd224e06
commit 0357a63dcf
3 changed files with 15 additions and 0 deletions
--- a/app.py
+++ b/app.py
@@ -82,14 +82,20 @@ if app.config.get("ENABLE_CSP", True):
        'script-src': "'self' 'unsafe-inline'"
    }

+permissions_policy = {
+    "browsing-topics": "()"
+} if app.config["ENABLE_PP"] else None
+
 talisman = Talisman(
    app,
    force_https=app.config.get("ENABLE_HSTS", True),
    strict_transport_security=app.config.get("ENABLE_HSTS", True),
    frame_options="DENY" if app.config.get("ENABLE_XFO", True) else None,
+    permissions_policy=permissions_policy,
    content_security_policy=csp_policy,
    x_content_type_options=app.config.get("ENABLE_XCTO", True),
    strict_transport_security_include_subdomains=False
+
 )

 register_heif_opener()  # pillow_heif dla HEIC