From 954965a5aaf67b01b979a49221fa5d68ca79ec27 Mon Sep 17 00:00:00 2001
From: Seth Vargo <sethvargo@gmail.com>
Date: Mon, 13 Jul 2015 12:50:17 -0400
Subject: [PATCH] Add Rack::Protection

---
 website/config.ru | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/website/config.ru b/website/config.ru
index 5cf4e322d..669f200cf 100644
--- a/website/config.ru
+++ b/website/config.ru
@@ -3,6 +3,17 @@ require "rack/contrib/not_found"
 require "rack/contrib/response_headers"
 require "rack/contrib/static_cache"
 require "rack/contrib/try_static"
+require "rack/protection"
+
+# Protect against various bad things
+use Rack::Protection::JsonCsrf
+use Rack::Protection::RemoteReferrer
+use Rack::Protection::HttpOrigin
+use Rack::Protection::EscapedParams
+use Rack::Protection::XSSHeader
+use Rack::Protection::FrameOptions
+use Rack::Protection::PathTraversal
+use Rack::Protection::IPSpoofing
 
 # Properly compress the output if the client can handle it.
 use Rack::Deflater