[jira] [Updated] (NIFI-6094) Add X-Content-Type-Options header

Andy LoPresto (Jira) Wed, 17 Jun 2020 17:17:06 -0700


     [ 
https://issues.apache.org/jira/browse/NIFI-6094?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Andy LoPresto updated NIFI-6094:
--------------------------------
    Fix Version/s: 1.12.0
         Assignee: Nathan Gough
       Resolution: Fixed
           Status: Resolved  (was: Patch Available)

> Add X-Content-Type-Options header
> ---------------------------------
>
>                 Key: NIFI-6094
>                 URL: https://issues.apache.org/jira/browse/NIFI-6094
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Security
>            Reporter: Nathan Gough
>            Assignee: Nathan Gough
>            Priority: Major
>              Labels: http-headers, security
>             Fix For: 1.12.0
>
>          Time Spent: 1h
>  Remaining Estimate: 0h
>
> The X-Content-Type-Options header should be added to all HTTP responses to 
> improve security. In order for this to work correctly, all NiFi resources 
> must accurately specify their respective *Content-Type*. This requires some 
> work, as I do not believe this is currently the case for all of our resources.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (NIFI-6094) Add X-Content-Type-Options header

Reply via email to