examples: Update Middleware for CSP (vercel#58300)

Author: leerob

examples/with-strict-csp/middleware.js

@@ -15,23 +15,30 @@ export function middleware(request){
  block-all-mixed-content;
  upgrade-insecure-requests;
 `
+// Replace newline characters and spaces
+constcontentSecurityPolicyHeaderValue=cspHeader
+.replace(/\s{2,}/g,' ')
+.trim()
 
 constrequestHeaders=newHeaders(request.headers)
-
-// Setting request headers
 requestHeaders.set('x-nonce',nonce)
 requestHeaders.set(
 'Content-Security-Policy',
-// Replace newline characters and spaces
-cspHeader.replace(/\s{2,}/g,' ').trim()
+contentSecurityPolicyHeaderValue
 )
 
-returnNextResponse.next({
+constresponse=NextResponse.next({
 headers: requestHeaders,
 request: {
 headers: requestHeaders,
 },
 })
+response.headers.set(
+'Content-Security-Policy',
+contentSecurityPolicyHeaderValue
+)
+
+returnresponse
 }
 
 exportconstconfig={