Add security-headers - Githubissues

skx / puppet-summary

The Puppet Summary is a web interface providing reporting features for Puppet, it replaces the Puppet Dashboard project

GNU General Public License v2.0

47 stars 19 forks source link

Closed skx closed 7 years ago

skx commented 7 years ago

We should add suitable security-headers to our output, to prevent frame-embedding, click-jacking, and XSS.

skx commented 7 years ago

Upon reflection these should be added in the reverse-proxy which is deployed ahead of this.