Issues with security headers

  • Resolved EddieG

    (@eddievet)


    1 year, 6 months ago

    Hi there

    I issues with security headers.

    I have added the following headers into htaccess but there aren’t taking effect. Here is what i have done so far to make it work.

    I have also disabled cloudflare.
    Enable Rewrite is turned ON
    cleared all cache

    Header always set Strict-Transport-Security “max-age=31536000; includeSubDomains; preload”

    Header always set Content-Security-Policy “default-src ‘self’;”

    Header always set X-Frame-Options “SAMEORIGIN”

    Header always set X-Content-Type-Options “nosniff”

    Header always set Referrer-Policy “strict-origin-when-cross-origin”

    Header always set Permissions-Policy “geolocation=(), camera=(), microphone=()”

    Can someone help to figure out the issue presented?

    • This topic was modified 1 year, 6 months ago by EddieG.
    • This topic was modified 1 year, 6 months ago by EddieG.

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support hjogiupdraftplus

    (@hjogiupdraftplus)

    Hi @eddievet

    What is issue of AIOS here ? It seems like the .htaccess file editing seems have issue. Please use proper syntax and make sure .htaccess rules work.

    Regards

Viewing 1 replies (of 1 total)
  • The topic ‘Issues with security headers’ is closed to new replies.