Skip to content

Add Cross-Origin-Opener-Policy and Cross-Origin-Embedder-Policy security headers #9385

New issue
New issue
Closed
#10141
Closed
Add Cross-Origin-Opener-Policy and Cross-Origin-Embedder-Policy security headers#9385
#10141
Assignees
marcusdacoregio
Labels
in: configAn issue in spring-security-configtype: enhancementA general enhancement
Milestone
5.7.0-M1
@eddumelendez

Description

@eddumelendez
eddumelendez
opened on Jan 28, 2021

Expected Behavior

Allow to add Cross-Origin-Opener-Policy and Cross-Origin-Embedder-Policy headers via dsl and xml.

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Opener-Policy
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cross-Origin-Embedder-Policy

Current Behavior

This currently can be provided by https://docs.spring.io/spring-security/site/docs/5.5.x/reference/html5/#headers-custom

Context

Given the values provided by those headers, it would great to provide them explicitly.

I can provide a PR for this in the next weeks if adding them make sense.

Metadata

Metadata

Assignees

Labels

in: configAn issue in spring-security-configtype: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions