2024-11-23 20:34:01 +00:00
2 changed files with 14 additions and 0 deletions
--- a/handler/default.go
+++ b/handler/default.go
@@ -42,5 +42,6 @@ func GetHandler(d *sql.DB, serverSettings *types.ServerSettings) http.Handler {
 		middleware.ContentSecurityPolicy,
 		middleware.Cors(serverSettings),
 		middleware.Corp,
+		middleware.Coop,
 	)
 }
--- a/middleware/coop.go
+++ b/middleware/coop.go
@@ -0,0 +1,13 @@
+package middleware
+
+import (
+	"net/http"
+)
+
+func Coop(next http.Handler) http.Handler {
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		w.Header().Set("Cross-Origin-Opener-Policy", "same-origin")
+
+		next.ServeHTTP(w, r)
+	})
+}