修改header

src/main/java/com/leanwo/gateway/GlobalAccountFilter.java

@@ -63,7 +63,16 @@ public class GlobalAccountFilter implements GlobalFilter, Ordered{
         Long accountId = accountManagementService.getAccountIdByDomainName(domainName);
         logger.debug("获取的AccountId:" + accountId);
     	
-    	request.mutate().header("account", accountId.toString()).build();
+    	request.mutate().header("account", accountId.toString())
+    		.header("Strict-Transport-Security", "max-age=631138519")
+    		.header("Content-Security-Policy", "img-src 'self'")
+    		.header("X-Frame-Options", "DENY")
+    		.header("Expect-CT", "enforce, max-age=7776000, report-uri=\"https://u.leanwo.com/report\"")
+    		.header("X-XSS-Protection", "1; mode=block")
+    		.header("Referrer-Policy", "no-referrer | same-origin | origin | strict-origin | no-origin-when-downgrading")
+    		
+    		.build();
+    	
     	//代表放行请求
         return chain.filter(exchange);
 	}