Actions
Task #100032
closedAdd default HTTP security headers for backend
Start date:
2023-02-25
Due date:
% Done:
100%
Estimated time:
TYPO3 Version:
12
PHP Version:
Tags:
Complexity:
Sprint Focus:
Description
The TYPO3 backend should use common HTTP security headers by default.
The following HTTP security headers can safely be added:
Strict-Transport-Security
(if[BE][lockSSL]
is set or of the backend is accessed using HTTPS)X-Content-Type-Options
Referrer-Policy
Updated by Gerrit Code Review over 1 year ago
- Status changed from New to Under Review
Patch set 1 for branch main of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/77946
Updated by Gerrit Code Review over 1 year ago
Patch set 2 for branch main of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/c/Packages/TYPO3.CMS/+/77946
Updated by Torben Hansen over 1 year ago
- Status changed from Under Review to Resolved
- % Done changed from 0 to 100
Applied in changeset 7d5986a30d88e8dfb380b24383845b8ff6b4e9af.
Actions