We're using mod_wsgi-express to run a Flask app under Apache, hosted in a Docker container (on an EC2 instance in AWS). All is well, but a corporate security scan is throwing up a few suggested security lockdowns, namely disabling TRACE support and universally adding a couple of HTTP headers (X-Content-Type-Options and Strict-Transport-Security). From what I see that seems to mean adding and configuring a couple of Apache modules: rewrite_module (for the TRACE) and headers_module.
Is there any way to do this via mod_wsgi-express so it can still be launched from a single command line? I've looked for a command line option that does something like importing a user configuration block, but don't see it. Or is the only option to use --setup-only to generate the httpd.conf then script something to dynamically add the required configuration? Thanks -- You received this message because you are subscribed to the Google Groups "modwsgi" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/modwsgi. For more options, visit https://groups.google.com/d/optout.
