In Node.js/Express, how do I automatically add this header to every "render" response? In Node.js/Express, how do I automatically add this header to every "render" response? express express

In Node.js/Express, how do I automatically add this header to every "render" response?


javascript node.js http express url

You probably want to use app.use with your own middleware:

app.use(function(req, res, next) {    res.header('X-XSS-Protection', 0);    next();});

javascript node.js http express url 

// global controllerapp.get('/*',function(req,res,next){    res.header('X-XSS-Protection' , 0 );    next(); // http://expressjs.com/guide.html#passing-route control});

Just make sure this is the first controller you add, order is significant.

javascript node.js http express url

For express 4.x, the idiomatic way is as follows:

Implementation

// no mount path; executed for every request.app.use(function (req, res, next) {  res.set('X-XSS-Protection', 0);  next();});

Test

describe('Response Headers', function () {  it('responds with header X-XSS-Protection: 0', function (done) {    hippie(app)    .get('/any/route/you/can/think/of')    .expectHeader('X-XSS-Protection', 0)    .end(done);  });});

Dev Dependencies (for tests to work)

% npm install --save-dev mocha hippie

Relevant Documentation

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last