victorskl
commented
3 months ago - This tackles security enhancement to Portal frontend CDN HTTP server config by Cloudfront service. Response header policy is based on AWS managed Cloudfront SecurityHeadersPolicy with tuning done on Content Security Policy that fit for Portal UI. This tuning is a balancing art between security measure and user experience.
- See also initial PR #458