sessionManager->open(); $this->dispatcher->dispatch('app.bootstrap'); $this->sendHeaders(); $this->next(); } /** * Send HTTP headers * * @access private */ private function sendHeaders() { $this->response->withContentSecurityPolicy($this->container['cspRules']); $this->response->withSecurityHeaders(); if (ENABLE_XFRAME && $this->router->getAction() !== 'readonly') { $this->response->withXframe(); } if (ENABLE_HSTS) { $this->response->withStrictTransportSecurity(); } } }