SecurityHeadersOptions

Defined in: src/plugins/security-headers.ts:4

Properties

contentSecurityPolicy?

optional contentSecurityPolicy: boolean | Record<string, any>

Defined in: src/plugins/security-headers.ts:5

---

crossOriginEmbedderPolicy?

optional crossOriginEmbedderPolicy: boolean

Defined in: src/plugins/security-headers.ts:6

---

crossOriginOpenerPolicy?

optional crossOriginOpenerPolicy: boolean

Defined in: src/plugins/security-headers.ts:7

---

crossOriginResourcePolicy?

optional crossOriginResourcePolicy: boolean

Defined in: src/plugins/security-headers.ts:8

---

dnsPrefetchControl?

optional dnsPrefetchControl: boolean | { allow: boolean; }

Defined in: src/plugins/security-headers.ts:9

---

expectCt?

optional expectCt: boolean | { enforce?: boolean; maxAge?: number; reportUri?: string; }

Defined in: src/plugins/security-headers.ts:10

---

frameguard?

optional frameguard: boolean | { action: "deny" | "sameorigin" | "allow-from"; domain?: string; }

Defined in: src/plugins/security-headers.ts:11

---

hidePoweredBy?

optional hidePoweredBy: boolean

Defined in: src/plugins/security-headers.ts:12

---

hsts?

optional hsts: boolean | { includeSubDomains?: boolean; maxAge?: number; preload?: boolean; }

Defined in: src/plugins/security-headers.ts:13

---

ieNoOpen?

optional ieNoOpen: boolean

Defined in: src/plugins/security-headers.ts:14

---

noSniff?

optional noSniff: boolean

Defined in: src/plugins/security-headers.ts:15

---

originAgentCluster?

optional originAgentCluster: boolean

Defined in: src/plugins/security-headers.ts:16

---

permittedCrossDomainPolicies?

optional permittedCrossDomainPolicies: boolean | { permittedPolicies: "none" | "all" | "master-only" | "by-content-type"; }

Defined in: src/plugins/security-headers.ts:17

---

referrerPolicy?

optional referrerPolicy: boolean | { policy: string | string[]; }

Defined in: src/plugins/security-headers.ts:18

---

xssFilter?

optional xssFilter: boolean

Defined in: src/plugins/security-headers.ts:19