[jira] [Updated] (JSPWIKI-1237) Add the OWASP recommended http response headers

Alex O'Ree (Jira) Wed, 12 Nov 2025 09:19:05 -0800


     [ 
https://issues.apache.org/jira/browse/JSPWIKI-1237?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Alex O'Ree updated JSPWIKI-1237:
--------------------------------
    Assignee: Alex O'Ree

> Add the OWASP recommended http response headers
> -----------------------------------------------
>
>                 Key: JSPWIKI-1237
>                 URL: https://issues.apache.org/jira/browse/JSPWIKI-1237
>             Project: JSPWiki
>          Issue Type: New Feature
>            Reporter: Alex O'Ree
>            Assignee: Alex O'Ree
>            Priority: Major
>
> {{    Strict-Transport-Security: max-age=63072000; includeSubDomains; 
> preload}}
> {{    X-Frame-Options: DENY}}
> {{    X-Content-Type-Options: nosniff}}
> {{    Content-Security-Policy: default-src 'self'; script-src 'self' 
> 'unsafe-inline'; style-src 'self'; img-src 'self';}}
> {{    Referrer-Policy: no-referrer-when-downgrade}}
> {{    X-Permitted-Cross-Domain-Policies: none}}
> {{    Clear-Site-Data: "cookies", "storage"}}
> {{    Cross-Origin-Embedder-Policy: require-corp}}
> {{    Cross-Origin-Resource-Policy: same-origin}}{{}}{{I'll make them all 
> optional add ons. never know what might break things}}{{}}{{}}{{}}{{}}{{}}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (JSPWIKI-1237) Add the OWASP recommended http response headers

Reply via email to