ysjj-system/node_modules/egg-security/lib/middlewares/nosniff.js

'use strict';

const statuses = require('statuses');
const utils = require('../utils');

module.exports = options => {
  return async function nosniff(ctx, next) {
    await next();

    // ignore redirect response
    if (statuses.redirect[ctx.status]) return;

    const opts = utils.merge(options, ctx.securityOptions.nosniff);
    if (utils.checkIfIgnore(opts, ctx)) return;

    ctx.set('x-content-type-options', 'nosniff');
  };
};