Open deviceterra opened 1 year ago
As a service provider I need my service to use security headers and CORS policies So that my web site is not vulnerable to CORS attacks
Given the site is secured When a REST API request is made Then secure headers and a CORS policy should be returned
As a service provider I need my service to use security headers and CORS policies So that my web site is not vulnerable to CORS attacks
Details and Assumptions
Acceptance Criteria
Given the site is secured When a REST API request is made Then secure headers and a CORS policy should be returned