[FastAPI] Add secure headers/cookies

Currently aurweb has a severe lack of security headers, which would give us some nice security benefits.

The current headers can be viewed on securityheaders.com.

We should be able to set everything except Permissions-Policy.

An option seems to be to use secweb

Edited May 24, 2021 by Kevin Morris

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

Admin message