X-Git-Url: http://source.bookstackapp.com/bookstack/blobdiff_plain/7d9de23a25a5a055adf79e81f67768686f3a8c94..refs/pull/3693/head:/app/Http/Kernel.php?ds=inline diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php index 1733d29b3..91dbdd963 100644 --- a/app/Http/Kernel.php +++ b/app/Http/Kernel.php @@ -11,7 +11,7 @@ class Kernel extends HttpKernel * These middleware are run during every request to your application. */ protected $middleware = [ - \BookStack\Http\Middleware\CheckForMaintenanceMode::class, + \BookStack\Http\Middleware\PreventRequestsDuringMaintenance::class, \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class, \BookStack\Http\Middleware\TrimStrings::class, \BookStack\Http\Middleware\TrustProxies::class, @@ -24,12 +24,14 @@ class Kernel extends HttpKernel */ protected $middlewareGroups = [ 'web' => [ - \BookStack\Http\Middleware\ControlIframeSecurity::class, + \BookStack\Http\Middleware\ApplyCspRules::class, \BookStack\Http\Middleware\EncryptCookies::class, \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class, \Illuminate\Session\Middleware\StartSession::class, \Illuminate\View\Middleware\ShareErrorsFromSession::class, \BookStack\Http\Middleware\VerifyCsrfToken::class, + \BookStack\Http\Middleware\PreventAuthenticatedResponseCaching::class, + \BookStack\Http\Middleware\CheckEmailConfirmed::class, \BookStack\Http\Middleware\RunThemeActions::class, \BookStack\Http\Middleware\Localization::class, ], @@ -38,6 +40,8 @@ class Kernel extends HttpKernel \BookStack\Http\Middleware\EncryptCookies::class, \BookStack\Http\Middleware\StartSessionIfCookieExists::class, \BookStack\Http\Middleware\ApiAuthenticate::class, + \BookStack\Http\Middleware\PreventAuthenticatedResponseCaching::class, + \BookStack\Http\Middleware\CheckEmailConfirmed::class, ], ];