tomcat HTTP响应头汇总-白眉大叔

tomcat HTTP响应头汇总

HTTP响应头X-Content-Options：nosniff检查

Tomcat服务器配置X-Content-Type-Options、X-XSS-Protection、Content-Security-Policy、X-Frame-Options_tomcat content-security-policy-CSDN博客

打开tomcat/conf/web.xml,增加如下配置

    <filter>
        <filter-name>httpHeaderSecurity</filter-name>
        <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
        <init-param>
            <param-name>antiClickJackingOption</param-name>
            <param-value>SAMEORIGIN</param-value>
        </init-param>
        <async-supported>true</async-supported>
    </filter>
    
    <filter-mapping>
        <filter-name>httpHeaderSecurity</filter-name>
        <url-pattern>/*</url-pattern>
    </filter-mapping>

欢迎来撩：汇总all

关于白眉大叔linux云计算: 白眉大叔

相关文章

tomcat 生成文件 权限 -403错误

tomcat 404 一会可以访问，一会不可以访问

tomcat 目录映射

热门文章

1解决node: /lib64/libstdc++.so.6: version `GLIBCXX_3.4.20′ not found (required by node)

2docker 使用gpu资源

3k8s 安装Milvus分布式2.0x

4pip is configured with locations that require TLS/SSL, however the ssl module in Python is not available

5云原生基础-汇总

tomcat 生成文件权限 -403错误