strict-transport-security

strict-transport-security Questions

Solved

For which Content-Types should I set security related HTTP response headers?

I've built a web application (with my favourite language Fantom!) and am in the process of locking it down from XSS and other such attacks by supplying industry standard HTTP response headers. My q...

security http-headers content-security-policy x-frame-options strict-transport-security

Disconnection asked 8/1, 2018 at 13:37

Solved

Header "Strict-Transport-Security" twice in response with Swisscom CloudFoundry application

When using the Swisscom CloudFoundry solution with a Spring Boot application, two Strict-Transport-Security headers are added to a HTTPS response. I have looked into this issue, and found out that ...

http-headers cloud-foundry hsts swisscomdev strict-transport-security

Concussion asked 10/10, 2017 at 17:5

Solved

Cookies are not accessible within JavaScript (and the dev tools) but sent along with XHR request (no httponly used)

I'm using both a front-end and a back-end application on a different domain with a session-based authorization. I have setup a working CORS configuration, which works as expected on localhost (e.g....

javascript cookies cross-domain hsts strict-transport-security

Lucania asked 20/9, 2017 at 12:38

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

strict-transport-security Questions

Recommended topics

Hot tags