Vote count:
0
Where to set security HTTP headers in play framework web application project? I want to set headers like X-Content-Type-Options to nosniff and X-Frame-Options to DENY. I have tried to set these headers in nginx.conf file, but it is not working with ZAP tool as ZAP tool is giving an alert that these headers are missing after setting it into this file. (link: http://ift.tt/1iAhFek) I have tried with the solution mention on link: http://ift.tt/1wDMfGF but class SecurityHeadersFilter is not present in the package said. I am using play-2.2.1 version and for controllers java language is used. Please reply to this asap.
asked 1 min ago
Aucun commentaire:
Enregistrer un commentaire