From cc173b8fbb8e7c01652b765a2165087169886b6b Mon Sep 17 00:00:00 2001
From: Bhav Beri <bhavberi@gmail.com>
Date: Thu, 14 Nov 2024 10:05:37 +0530
Subject: [PATCH] Fixed middleware error on redirect paths

---
 src/middleware.js | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/src/middleware.js b/src/middleware.js
index 82db2391..4f4513ae 100644
--- a/src/middleware.js
+++ b/src/middleware.js
@@ -64,8 +64,8 @@ export function middleware(req) {
       "Content-Security-Policy",
       contentSecurityPolicyHeaderValue,
     );
-    responseRes.headers.set("X-Content-Type-Options", "nosniff");
-    responseRes.headers.set(
+    redirectRes.headers.set("X-Content-Type-Options", "nosniff");
+    redirectRes.headers.set(
       "Referrer-Policy",
       "strict-origin-when-cross-origin",
     );
@@ -81,8 +81,8 @@ export function middleware(req) {
       "Content-Security-Policy",
       contentSecurityPolicyHeaderValue,
     );
-    responseRes.headers.set("X-Content-Type-Options", "nosniff");
-    responseRes.headers.set(
+    redirectRes.headers.set("X-Content-Type-Options", "nosniff");
+    redirectRes.headers.set(
       "Referrer-Policy",
       "strict-origin-when-cross-origin",
     );
@@ -107,8 +107,8 @@ export function middleware(req) {
       "Content-Security-Policy",
       contentSecurityPolicyHeaderValue,
     );
-    responseRes.headers.set("X-Content-Type-Options", "nosniff");
-    responseRes.headers.set(
+    redirectRes.headers.set("X-Content-Type-Options", "nosniff");
+    redirectRes.headers.set(
       "Referrer-Policy",
       "strict-origin-when-cross-origin",
     );
@@ -132,8 +132,8 @@ export function middleware(req) {
       "Content-Security-Policy",
       contentSecurityPolicyHeaderValue,
     );
-    responseRes.headers.set("X-Content-Type-Options", "nosniff");
-    responseRes.headers.set(
+    redirectRes.headers.set("X-Content-Type-Options", "nosniff");
+    redirectRes.headers.set(
       "Referrer-Policy",
       "strict-origin-when-cross-origin",
     );
@@ -148,8 +148,8 @@ export function middleware(req) {
       "Content-Security-Policy",
       contentSecurityPolicyHeaderValue,
     );
-    responseRes.headers.set("X-Content-Type-Options", "nosniff");
-    responseRes.headers.set(
+    redirectRes.headers.set("X-Content-Type-Options", "nosniff");
+    redirectRes.headers.set(
       "Referrer-Policy",
       "strict-origin-when-cross-origin",
     );