From f252233f474d440ba04cd10cda897e88eee70fce Mon Sep 17 00:00:00 2001
From: Cadence Ember <cloudrac3r@vivaldi.net>
Date: Sat, 30 May 2020 23:21:09 +1200
Subject: [PATCH] Set referrer-policy to strict-origin

---
 src/site/server.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/site/server.js b/src/site/server.js
index 2eb1f5d..a5b7849 100644
--- a/src/site/server.js
+++ b/src/site/server.js
@@ -20,7 +20,7 @@ const pinski = new Pinski({
 	globalHeaders: {
 		"Content-Security-Policy": "default-src 'self'; frame-ancestors 'none'; block-all-mixed-content",
 		"Feature-Policy": deniedFeatures.map(feature => `${feature} 'none'`).join("; "),
-		"Referrer-Policy": "origin",
+		"Referrer-Policy": "strict-origin",
 		"X-Content-Type-Options": "nosniff"
 	}
 })