Improve HTTP headers security by default #364

Vadorequest · 2021-06-09T14:53:59Z

I decided not to add permissions policy because it's not widely adopted yet and still kinda beta.

…tent-Security-Policy directive

…iframe embed security strategy

github-actions · 2021-06-09T15:36:55Z

github-actions · 2021-06-09T15:37:13Z

github-actions · 2021-06-09T15:42:27Z

github-actions · 2021-06-09T15:42:35Z

✅ E2E tests SUCCESS for commit 781584e previously deployed Storybook static site at https://nrn-v2-mst-aptd-at-lcz-sty-storybook-pfk2x6l03-unly-oss.vercel.app

Vadorequest added 3 commits June 9, 2021 16:07

Add X-Content-Type-Options directive + improve doc about existing Con…

fa1dda8

…tent-Security-Policy directive

Add DISABLE_IFRAME_EMBED_FROM_3RD_PARTIES flag to quickly change the …

e86f634

…iframe embed security strategy

Add Referrer-Policy

781584e

Vadorequest linked an issue Jun 9, 2021 that may be closed by this pull request

Improve HTTP headers security, by default #311

Closed

github-actions bot temporarily deployed to storybook June 9, 2021 15:31 Inactive

github-actions bot temporarily deployed to customer1-staging June 9, 2021 15:31 Inactive

Vadorequest marked this pull request as ready for review June 9, 2021 15:39

Vadorequest merged commit e23d933 into v2-mst-aptd-at-lcz-sty Jun 9, 2021

Vadorequest deleted the add-http-security-headers branch June 9, 2021 15:40

Vadorequest added a commit that referenced this pull request Jun 9, 2021

Improve HTTP headers security by default (from #364)

d120396

Vadorequest mentioned this pull request Jun 9, 2021

Improve HTTP headers security, by default #311

Closed

Provide feedback