Author: lmccay Date: Thu Sep 7 22:09:23 2017 New Revision: 1807654 URL: http://svn.apache.org/viewvc?rev=1807654&view=rev Log: KNOX-1028 - X-Frame-Options and other security headers are ineffective
Modified: knox/site/books/knox-0-10-0/deployment-overview.png knox/site/books/knox-0-10-0/deployment-provider.png knox/site/books/knox-0-10-0/deployment-service.png knox/site/books/knox-0-10-0/general_saml_flow.png knox/site/books/knox-0-10-0/runtime-overview.png knox/site/books/knox-0-10-0/runtime-request-processing.png knox/site/books/knox-0-10-0/user-guide.html knox/site/books/knox-0-11-0/deployment-overview.png knox/site/books/knox-0-11-0/deployment-provider.png knox/site/books/knox-0-11-0/deployment-service.png knox/site/books/knox-0-11-0/general_saml_flow.png knox/site/books/knox-0-11-0/runtime-overview.png knox/site/books/knox-0-11-0/runtime-request-processing.png knox/site/books/knox-0-11-0/user-guide.html knox/site/books/knox-0-12-0/deployment-overview.png knox/site/books/knox-0-12-0/deployment-provider.png knox/site/books/knox-0-12-0/deployment-service.png knox/site/books/knox-0-12-0/general_saml_flow.png knox/site/books/knox-0-12-0/runtime-overview.png knox/site/books/knox-0-12-0/runtime-request-processing.png knox/site/books/knox-0-12-0/user-guide.html knox/site/books/knox-0-13-0/deployment-overview.png knox/site/books/knox-0-13-0/deployment-provider.png knox/site/books/knox-0-13-0/deployment-service.png knox/site/books/knox-0-13-0/general_saml_flow.png knox/site/books/knox-0-13-0/runtime-overview.png knox/site/books/knox-0-13-0/runtime-request-processing.png knox/site/books/knox-0-13-0/user-guide.html knox/site/books/knox-0-4-0/deployment-overview.png knox/site/books/knox-0-4-0/deployment-provider.png knox/site/books/knox-0-4-0/deployment-service.png knox/site/books/knox-0-4-0/runtime-overview.png knox/site/books/knox-0-4-0/runtime-request-processing.png knox/site/books/knox-0-5-0/deployment-overview.png knox/site/books/knox-0-5-0/deployment-provider.png knox/site/books/knox-0-5-0/deployment-service.png knox/site/books/knox-0-5-0/runtime-overview.png knox/site/books/knox-0-5-0/runtime-request-processing.png knox/site/books/knox-0-6-0/deployment-overview.png knox/site/books/knox-0-6-0/deployment-provider.png knox/site/books/knox-0-6-0/deployment-service.png knox/site/books/knox-0-6-0/runtime-overview.png knox/site/books/knox-0-6-0/runtime-request-processing.png knox/site/books/knox-0-7-0/deployment-overview.png knox/site/books/knox-0-7-0/deployment-provider.png knox/site/books/knox-0-7-0/deployment-service.png knox/site/books/knox-0-7-0/general_saml_flow.png knox/site/books/knox-0-7-0/runtime-overview.png knox/site/books/knox-0-7-0/runtime-request-processing.png knox/site/books/knox-0-8-0/deployment-overview.png knox/site/books/knox-0-8-0/deployment-provider.png knox/site/books/knox-0-8-0/deployment-service.png knox/site/books/knox-0-8-0/general_saml_flow.png knox/site/books/knox-0-8-0/runtime-overview.png knox/site/books/knox-0-8-0/runtime-request-processing.png knox/site/books/knox-0-9-0/deployment-overview.png knox/site/books/knox-0-9-0/deployment-provider.png knox/site/books/knox-0-9-0/deployment-service.png knox/site/books/knox-0-9-0/general_saml_flow.png knox/site/books/knox-0-9-0/runtime-overview.png knox/site/books/knox-0-9-0/runtime-request-processing.png knox/site/books/knox-0-9-0/user-guide.html knox/site/books/knox-0-9-1/deployment-overview.png knox/site/books/knox-0-9-1/deployment-provider.png knox/site/books/knox-0-9-1/deployment-service.png knox/site/books/knox-0-9-1/general_saml_flow.png knox/site/books/knox-0-9-1/runtime-overview.png knox/site/books/knox-0-9-1/runtime-request-processing.png knox/site/books/knox-0-9-1/user-guide.html knox/trunk/books/0.10.0/config_webappsec_provider.md knox/trunk/books/0.11.0/config_webappsec_provider.md knox/trunk/books/0.12.0/config_webappsec_provider.md knox/trunk/books/0.13.0/config_webappsec_provider.md knox/trunk/books/0.9.0/config_webappsec_provider.md knox/trunk/books/0.9.1/config_webappsec_provider.md Modified: knox/site/books/knox-0-10-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-10-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-10-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-10-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-10-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-10-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-10-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-10-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/site/books/knox-0-10-0/user-guide.html (original) +++ knox/site/books/knox-0-10-0/user-guide.html Thu Sep 7 22:09:23 2017 @@ -2122,7 +2122,7 @@ APACHE_HOME/bin/apachectl -k stop <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> </code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6> <table> @@ -2224,12 +2224,12 @@ APACHE_HOME/bin/apachectl -k stop </thead> <tbody> <tr> - <td>xframe-options.enabled </td> + <td>xframe.options.enabled </td> <td>This param enables the X-Frame-Options capabilities</td> <td>false</td> </tr> <tr> - <td>xframe-options.value </td> + <td>xframe.options </td> <td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td> <td>DENY</td> </tr> Modified: knox/site/books/knox-0-11-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-11-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-11-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-11-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-11-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-11-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-11-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-11-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/site/books/knox-0-11-0/user-guide.html (original) +++ knox/site/books/knox-0-11-0/user-guide.html Thu Sep 7 22:09:23 2017 @@ -2220,7 +2220,7 @@ APACHE_HOME/bin/apachectl -k stop <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> </code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6> <table> @@ -2322,12 +2322,12 @@ APACHE_HOME/bin/apachectl -k stop </thead> <tbody> <tr> - <td>xframe-options.enabled </td> + <td>xframe.options.enabled </td> <td>This param enables the X-Frame-Options capabilities</td> <td>false</td> </tr> <tr> - <td>xframe-options.value </td> + <td>xframe.options </td> <td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td> <td>DENY</td> </tr> Modified: knox/site/books/knox-0-12-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-12-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-12-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-12-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-12-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-12-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-12-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-12-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/site/books/knox-0-12-0/user-guide.html (original) +++ knox/site/books/knox-0-12-0/user-guide.html Thu Sep 7 22:09:23 2017 @@ -2250,7 +2250,7 @@ APACHE_HOME/bin/apachectl -k stop <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> </code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6> <table> @@ -2352,12 +2352,12 @@ APACHE_HOME/bin/apachectl -k stop </thead> <tbody> <tr> - <td>xframe-options.enabled </td> + <td>xframe.options.enabled </td> <td>This param enables the X-Frame-Options capabilities</td> <td>false</td> </tr> <tr> - <td>xframe-options.value </td> + <td>xframe.options </td> <td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td> <td>DENY</td> </tr> Modified: knox/site/books/knox-0-13-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-13-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-13-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-13-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-13-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-13-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-13-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-13-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/site/books/knox-0-13-0/user-guide.html (original) +++ knox/site/books/knox-0-13-0/user-guide.html Thu Sep 7 22:09:23 2017 @@ -2291,7 +2291,7 @@ APACHE_HOME/bin/apachectl -k stop <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> </code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6> <table> @@ -2393,12 +2393,12 @@ APACHE_HOME/bin/apachectl -k stop </thead> <tbody> <tr> - <td>xframe-options.enabled </td> + <td>xframe.options.enabled </td> <td>This param enables the X-Frame-Options capabilities</td> <td>false</td> </tr> <tr> - <td>xframe-options.value </td> + <td>xframe.options </td> <td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td> <td>DENY</td> </tr> Modified: knox/site/books/knox-0-4-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-4-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-4-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-4-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-4-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-4-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-5-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-5-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-5-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-5-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-5-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-5-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-6-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-6-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-6-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-6-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-6-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-6-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-7-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-7-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-7-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-7-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-7-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-7-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-7-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-8-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-8-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-8-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-8-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-8-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-8-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-8-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-0/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-0/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/site/books/knox-0-9-0/user-guide.html (original) +++ knox/site/books/knox-0-9-0/user-guide.html Thu Sep 7 22:09:23 2017 @@ -2062,7 +2062,7 @@ APACHE_HOME/bin/apachectl -k stop <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> </code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6> <table> @@ -2164,12 +2164,12 @@ APACHE_HOME/bin/apachectl -k stop </thead> <tbody> <tr> - <td>xframe-options.enabled </td> + <td>xframe.options.enabled </td> <td>This param enables the X-Frame-Options capabilities</td> <td>false</td> </tr> <tr> - <td>xframe-options.value </td> + <td>xframe.options </td> <td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td> <td>DENY</td> </tr> Modified: knox/site/books/knox-0-9-1/deployment-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/deployment-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-1/deployment-provider.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/deployment-provider.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-1/deployment-service.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/deployment-service.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-1/general_saml_flow.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/general_saml_flow.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-1/runtime-overview.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/runtime-overview.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-1/runtime-request-processing.png URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/runtime-request-processing.png?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== Binary files - no diff available. Modified: knox/site/books/knox-0-9-1/user-guide.html URL: http://svn.apache.org/viewvc/knox/site/books/knox-0-9-1/user-guide.html?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/site/books/knox-0-9-1/user-guide.html (original) +++ knox/site/books/knox-0-9-1/user-guide.html Thu Sep 7 22:09:23 2017 @@ -2062,7 +2062,7 @@ APACHE_HOME/bin/apachectl -k stop <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> </code></pre><h4><a id="Descriptions">Descriptions</a> <a href="#Descriptions"><img src="markbook-section-link.png"/></a></h4><p>The following tables describes the configuration options for the web app security provider:</p><h5><a id="CSRF">CSRF</a> <a href="#CSRF"><img src="markbook-section-link.png"/></a></h5><h6><a id="Config">Config</a> <a href="#Config"><img src="markbook-section-link.png"/></a></h6> <table> @@ -2164,12 +2164,12 @@ APACHE_HOME/bin/apachectl -k stop </thead> <tbody> <tr> - <td>xframe-options.enabled </td> + <td>xframe.options.enabled </td> <td>This param enables the X-Frame-Options capabilities</td> <td>false</td> </tr> <tr> - <td>xframe-options.value </td> + <td>xframe.options </td> <td>This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri</td> <td>DENY</td> </tr> Modified: knox/trunk/books/0.10.0/config_webappsec_provider.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.10.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/trunk/books/0.10.0/config_webappsec_provider.md (original) +++ knox/trunk/books/0.10.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017 @@ -51,7 +51,7 @@ Because of this one-to-many provider/fil <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> #### Descriptions #### @@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a Name | Description | Default -----------------------------|-------------|--------- -xframe-options.enabled | This param enables the X-Frame-Options capabilities|false -xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY +xframe.options.enabled | This param enables the X-Frame-Options capabilities|false +xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY Modified: knox/trunk/books/0.11.0/config_webappsec_provider.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.11.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/trunk/books/0.11.0/config_webappsec_provider.md (original) +++ knox/trunk/books/0.11.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017 @@ -51,7 +51,7 @@ Because of this one-to-many provider/fil <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> #### Descriptions #### @@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a Name | Description | Default -----------------------------|-------------|--------- -xframe-options.enabled | This param enables the X-Frame-Options capabilities|false -xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY +xframe.options.enabled | This param enables the X-Frame-Options capabilities|false +xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY Modified: knox/trunk/books/0.12.0/config_webappsec_provider.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.12.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/trunk/books/0.12.0/config_webappsec_provider.md (original) +++ knox/trunk/books/0.12.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017 @@ -51,7 +51,7 @@ Because of this one-to-many provider/fil <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> #### Descriptions #### @@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a Name | Description | Default -----------------------------|-------------|--------- -xframe-options.enabled | This param enables the X-Frame-Options capabilities|false -xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY +xframe.options.enabled | This param enables the X-Frame-Options capabilities|false +xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY Modified: knox/trunk/books/0.13.0/config_webappsec_provider.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.13.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/trunk/books/0.13.0/config_webappsec_provider.md (original) +++ knox/trunk/books/0.13.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017 @@ -51,7 +51,7 @@ Because of this one-to-many provider/fil <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> #### Descriptions #### @@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a Name | Description | Default -----------------------------|-------------|--------- -xframe-options.enabled | This param enables the X-Frame-Options capabilities|false -xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY +xframe.options.enabled | This param enables the X-Frame-Options capabilities|false +xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY Modified: knox/trunk/books/0.9.0/config_webappsec_provider.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.9.0/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/trunk/books/0.9.0/config_webappsec_provider.md (original) +++ knox/trunk/books/0.9.0/config_webappsec_provider.md Thu Sep 7 22:09:23 2017 @@ -51,7 +51,7 @@ Because of this one-to-many provider/fil <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> #### Descriptions #### @@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a Name | Description | Default -----------------------------|-------------|--------- -xframe-options.enabled | This param enables the X-Frame-Options capabilities|false -xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY +xframe.options.enabled | This param enables the X-Frame-Options capabilities|false +xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY Modified: knox/trunk/books/0.9.1/config_webappsec_provider.md URL: http://svn.apache.org/viewvc/knox/trunk/books/0.9.1/config_webappsec_provider.md?rev=1807654&r1=1807653&r2=1807654&view=diff ============================================================================== --- knox/trunk/books/0.9.1/config_webappsec_provider.md (original) +++ knox/trunk/books/0.9.1/config_webappsec_provider.md Thu Sep 7 22:09:23 2017 @@ -51,7 +51,7 @@ Because of this one-to-many provider/fil <param><name>csrf.customHeader</name><value>X-XSRF-Header</value></param> <param><name>csrf.methodsToIgnore</name><value>GET,OPTIONS,HEAD</value></param> <param><name>cors.enabled</name><value>true</value></param> - <param><name>xframe-options.enabled</name><value>true</value></param> + <param><name>xframe.options.enabled</name><value>true</value></param> </provider> #### Descriptions #### @@ -101,6 +101,6 @@ Cross Frame Scripting and Clickjacking a Name | Description | Default -----------------------------|-------------|--------- -xframe-options.enabled | This param enables the X-Frame-Options capabilities|false -xframe-options.value | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY +xframe.options.enabled | This param enables the X-Frame-Options capabilities|false +xframe.options | This param specifies a particular value for the X-Frame-Options header. Most often the default value of DENY will be most appropriate. You can also use SAMEORIGIN or ALLOW-FROM uri|DENY