增加安全响应头

src/com/ccgj/platform/interceptor/SecurityHeadersFilter.java

@@ -10,10 +10,7 @@ public class SecurityHeadersFilter implements Filter {
         HttpServletResponse httpResponse = (HttpServletResponse) response;
         // 设置安全头
         httpResponse.setHeader("X-Content-Type-Options", "nosniff");
-        httpResponse.setHeader("X-Frame-Options", "SAMEORIGIN");
         httpResponse.setHeader("X-XSS-Protection", "1; mode=block");
-        httpResponse.setHeader("Content-Security-Policy", "default-src 'self'");
-        httpResponse.setHeader("Strict-Transport-Security", "max-age=31536000; includeSubDomains");
 
         chain.doFilter(request, httpResponse);
     }