[
https://issues.apache.org/jira/browse/JSPWIKI-1237?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18038120#comment-18038120
]
ASF subversion and git services commented on JSPWIKI-1237:
----------------------------------------------------------
Commit 28595bf1f9a212b7b23e9c2de2500aceb56bf6d9 in jspwiki's branch
refs/heads/master from spyhunter99
[ https://gitbox.apache.org/repos/asf?p=jspwiki.git;h=28595bf1f ]
Merge pull request #432 from spyhunter99/feature/JSPWIKI-1237
JSPWIKI-1237 adds the owasp recommended http response headers
> Add the OWASP recommended http response headers
> -----------------------------------------------
>
> Key: JSPWIKI-1237
> URL: https://issues.apache.org/jira/browse/JSPWIKI-1237
> Project: JSPWiki
> Issue Type: New Feature
> Reporter: Alex O'Ree
> Assignee: Alex O'Ree
> Priority: Major
> Labels: pull-request-available
>
> {{ Strict-Transport-Security: max-age=63072000; includeSubDomains;
> preload}}
> {{ X-Frame-Options: DENY}}
> {{ X-Content-Type-Options: nosniff}}
> {{ Content-Security-Policy: default-src 'self'; script-src 'self'
> 'unsafe-inline'; style-src 'self'; img-src 'self';}}
> {{ Referrer-Policy: no-referrer-when-downgrade}}
> {{ X-Permitted-Cross-Domain-Policies: none}}
> {{ Clear-Site-Data: "cookies", "storage"}}
> {{ Cross-Origin-Embedder-Policy: require-corp}}
> {{ Cross-Origin-Resource-Policy: same-origin}}{{}}{{I'll make them all
> optional add ons. never know what might break things}}{{}}{{}}{{}}{{}}{{}}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
