Warning: This page has not been updated in over over a year and may be outdated or deprecated.
administration:security:content_security_policy
This is an old revision of the document!
Content Security Policy
This feature was introduced in VuFind 7.0.
HTTP responses can include a Content Security Policy header which provides restrictions on the behavior of the client in order ot provide improved security. VuFind supports the creation of CSP headers to restrict web browser behavior and prevent common security vulnerabilities such as cross-site scripting.
You can learn more at the Mozilla Developer Resources Content Security Policies page.
Best Practices / Recommendations
Details coming soon.
administration/security/content_security_policy.1593432872.txt.gz · Last modified: 2020/06/29 12:14 by demiankatz