From 98af513ce3f78605829c55f903b8d092cfac05e0 Mon Sep 17 00:00:00 2001
From: Ruslan <11838981+feedmeapples@users.noreply.github.com>
Date: Mon, 3 Jan 2022 21:08:15 -0500
Subject: [PATCH] Add common security, xss protection headers (#82)

---
 server/server.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/server/server.go b/server/server.go
index 8b4d0ba658..2150a49cf3 100644
--- a/server/server.go
+++ b/server/server.go
@@ -71,6 +71,7 @@ func NewServer(opts ...server_options.ServerOption) *Server {
 	// Middleware
 	e.Use(middleware.Logger())
 	e.Use(middleware.Recover())
+	e.Use(middleware.Secure())
 	e.Use(middleware.CORSWithConfig(middleware.CORSConfig{
 		AllowOrigins:     serverOpts.Config.CORS.AllowOrigins,
 		AllowHeaders:     []string{echo.HeaderOrigin, echo.HeaderContentType, echo.HeaderAccept},