Skip to content

HttpHeader 1.0.1
Compare
Choose a tag to compare
@zero-24 zero-24 released this 18 May 22:31
· 92 commits to master since this release
1.0.1
This tag was signed with the committer’s verified signature.
zero-24 Tobias Zulauf
GPG key ID: 7F25683135447906
Learn about vigilant mode.
c04c02f
This commit was signed with the committer’s verified signature.
zero-24 Tobias Zulauf
GPG key ID: A041B880A124AF84
Learn about vigilant mode.

This is the first patch release of the HttpHeader Plugin.

Changelog

  • Add the possibility to configure the HSTS Header using the Plugin UI. (Based on the great work by @degobbis)
  • Add the possibility to configure the CSP Header using the Plugin UI. (Based on the great work by @degobbis)
  • The commit: f76d76e is included here too.

Feature

This plugin allows you to set all security http headers using a joomla plugin:

  • Strict-Transport-Security
  • Content-Security-Policy
  • Content-Security-Policy-Report-Only
  • X-Frame-Options
  • X-XSS-Protection
  • X-Content-Type-Options
  • Referrer-Policy
  • Expect-CT

This plugin also comes with some easy defaults for:

  • X-Frame-Options
  • X-XSS-Protection
  • X-Content-Type-Options
  • Referrer-Policy
Assets 4
Loading