In addition to the other replies, you can also set the headers easily yourself in web2py (although depending on your own web server settings, some may be overwritten). For example, in a model (say):
response.headers['Strict-Transport-Security'] = 'max-age=63072000; includeSubDomains; preload' response.headers['Referrer-Policy'] = 'no-referrer-when-downgrade' response.headers['X-Powered-By'] = '' response.headers['X-Frame-Options'] = 'DENY' HTH, Jose -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/web2py/370e6697-907c-42f0-9b8c-135df614efbdo%40googlegroups.com.
