[
https://issues.apache.org/jira/browse/KNOX-3124?focusedWorklogId=966108&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-966108
]
ASF GitHub Bot logged work on KNOX-3124:
----------------------------------------
Author: ASF GitHub Bot
Created on: 14/Apr/25 22:50
Start Date: 14/Apr/25 22:50
Worklog Time Spent: 10m
Work Description: lmccay commented on code in PR #1021:
URL: https://github.com/apache/knox/pull/1021#discussion_r2043099474
##########
gateway-provider-security-webappsec/src/main/java/org/apache/knox/gateway/webappsec/deploy/WebAppSecContributor.java:
##########
@@ -55,6 +55,10 @@ public class WebAppSecContributor extends
ProviderDeploymentContributorBase {
private static final String RATE_LIMITING_PREFIX = "rate.limiting";
private static final String RATE_LIMITING_SUFFIX = "_RATE.LIMITING";
private static final String RATE_LIMITING_ENABLED = RATE_LIMITING_PREFIX +
".enabled";
+ private static final String SECURITY_HEADER_PREFIX = "security.header";
Review Comment:
I agree but others are this way too just keeping it consistent.
Issue Time Tracking
-------------------
Worklog Id: (was: 966108)
Time Spent: 0.5h (was: 20m)
> Add Generic Security Header Filter to WebAppSec Provider
> --------------------------------------------------------
>
> Key: KNOX-3124
> URL: https://issues.apache.org/jira/browse/KNOX-3124
> Project: Apache Knox
> Issue Type: Improvement
> Components: Server
> Reporter: Larry McCay
> Assignee: Larry McCay
> Priority: Major
> Fix For: 2.2.0
>
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> In order to add various security headers to a response, we can add a generic
> filter for which init params with the param name and value indicating the
> header name and string representing the directives for the header
> respectively.
> This will allow admins to configure things like Content-Security-Policy,
> Cache-Control, etc. without the need to add separate filters for each one.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
