Skip to content
/ SecurityHeadersMiddleware Public
forked from StefanOssendorf/SecurityHeadersMiddleware

OWIN Middlewares to set useful security-related HTTP header (STS, Anti-Clickjacking, XSS, CSP).

License

MIT license
0 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

yonglehou/SecurityHeadersMiddleware

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

69 Commits

src

src

 
 

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

license.txt

license.txt

 
 

Repository files navigation

Security Headers Middleware

Build Status NuGet Status NuGet Status

Middlewares to set useful security-related HTTP headers in your OWIN application. (From OWASP list)

Already implemented

  • Strict-Transport-Security incl. options
  • X-Frame-Options incl. supporting multiple origins
  • X-XSS-Protection incl. disabling (but I don't know why).
  • X-Content-Type-Options
  • Content-Security-Policy 2 (except Hash and Nonce)
  • Content-Security-Policy-Report-Only

Using

See the tests as examples of usage:

Developed with

MarkdownPad 2 JetBrains ReSharper

About

OWIN Middlewares to set useful security-related HTTP header (STS, Anti-Clickjacking, XSS, CSP).

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • C# 100.0%