Handbook
Glossary
add-modern-headers ( response -- response )
Vocabulary
http
Inputs
response
an
object
Outputs
response
an
object
Definition
IN:
http
:
add-modern-headers
( response -- response )
"max-age=63072000; includeSubDomains; preload"
"Strict-Transport-Security"
set-header
"nosniff"
"X-Content-Type-Options"
set-header
"default-src https: 'unsafe-inline'; frame-ancestors 'none'; o..."
"Content-Security-Policy"
set-header
"DENY"
"X-Frame-Options"
set-header
"1; mode=block"
"X-XSS-Protection"
set-header
;