tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christopher Schultz <ch...@christopherschultz.net>
Subject Re: security headers
Date Sat, 04 Nov 2017 14:48:05 GMT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Alejandro,

On 11/3/17 5:54 PM, Alejandro Vargas M. wrote:
> You can help with an example of this url-rewrite to add this
> header,

The url-rewrite user manual is quite comprehensive, including many
examples. I'm sure you can figure it out.

- -chris

> On 11/01/2017 02:03 PM, Christopher Schultz wrote: Alejandro,
> 
> On 11/1/17 3:37 PM, Alejandro Vargas M. wrote:
>>>> Hello,
>>>> 
>>>> I recently used on web.xml
>>>> 
>>>> <filter> <filter-name>httpHeaderSecurity</filter-name>

>>>> <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter<
/fi
>
>>>> 
lter-class>
>>>> <async-supported>true</async-supported> </filter>
>>>> 
>>>> <filter-mapping>
>>>> <filter-name>httpHeaderSecurity</filter-name> 
>>>> <url-pattern>/*</url-pattern> </filter-mapping>
>>>> 
>>>> to enable some security headers, but it won't enable Content 
>>>> Security Policy header. Is there anyway to enable Content
>>>> Security Policy at top server level???
> What were you expecting that Filter to generate for you? A header 
> which disables everything? Not terribly useful.
> 
> My recommendation would be to use something like url-rewrite[1] to
> add headers to every outgoing response. url-rewrite has very
> similar capabilities to httpd's mod_headers (and much more, of
> course).
> 
> -chris
> 
> [1] http://tuckey.org/urlrewrite/
>> 
>> ---------------------------------------------------------------------
>>
>> 
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
>> For additional commands, e-mail: users-help@tomcat.apache.org
>> 
>> 
> 
> --
> 
> 
> 
> 
> Alejandro Vargas Mayorga /*Gerente Desarrollo C.A. & C.*/ *Tel.
> 506- 7232-3366* *Email:**alejandro.vargas@kymsolutions.com* 
> <mailto:%20alejandro.vargas@kymsolutions.com>* 
> **www.kymsolutions.com* <http://www.kymsolutions.com/>* Visite
> nuestra aula virtual! *
> 
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAln90yQACgkQHPApP6U8
pFiy9xAAyLtluQed3UzQBa6CkoQCAWAL8rQkXiD2CVPaGRrH+cl79M6JzOoZxDXw
L+9hmwVYZhDljctwmsmP4jzjJSib8A/VwLoGEakoz1T6XvECuBt6+E8vb98e63Lu
EAeZcLPUQnluGsDdZmi5hIyS55/1L0Pr0Ef/3ndhmg6a8wKnHcwTaep+idrS73aT
jUs7YQzY+x0+ZvSfpJMbuGP3aqaYA0D/BRKYY9PAfK1pZsYypyinyNljGDe1Ks2I
NHs+KPX7h2QwF/hGaW7ERB9urLCz76cO2Q0nWTvXDuO5GrBbw3ADzouPxRYC1JF2
z+x94gK22pP0eQP+P+SabyDwEbhZj2MUdlK0XsHsMnCDSExzxCIf1ZG/l/fZ6Dk0
2ru1frNEBOTO/W5jqAzRHijvkEmNXzRKQuoCRMI28ybLI795qHn21RqRnzmAvhxg
zyLqBrhq/Oyt3SUE+U0xYscABgjBV1a46lDyw4S3f/q4CK0lmgCTmftr+nfqodb6
75+RIL24jQYah0CQMryyS1tWP8zDprk1FO6zxam3owUoxOeB4YLz9t0Iv1UMVReT
vfhQBulADm7rECegoRoDvDGII9sYqaRPqn2VN8bpFPPtQJPLghisZC9+XRXOy8Qr
3mDPEkQNRSfkkmZD6yVNU0lHccfidrmAgpLm5nYU00R4pEPOxtI=
=USq0
-----END PGP SIGNATURE-----

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message