Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

#2975-Suggestion-Add-Permissions-Policy-as-configurable-option-to-Sec… #3353

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

#2975-Suggestion-Add-Permissions-Policy-as-configurable-option-to-Sec… #3353

wants to merge 3 commits into from

Conversation

joerg-richter-5234
Copy link

Added Permissions-Policy header as opt-in feature in SecureHeaders-GatewayFilter

Permissions Policy is a security header that allows web developers to manage which browser features a website can utilize.
It is an opt-in header and has to be enabled. When enabled, it applies a default that disables a comprehensive list of features.
It is recommended to configure this header to the respective environment and use case.

The documentation was updated to include information about Permissions-Policy and further resources.
The test suite was updated to include Permission-Policy.

Fixes gh-2975

@joerg-richter-5234
spring-cloud#2975-Suggestion-Add-Permissions-Policy-as-configurable-o…
65db679 
…ption-to-SecureHeaders-GatewayFilter

- added Permissions-Policy header as an opt-in header & default value
- updated documentation with Permissions-Policy and resources
- updated tests to include Permission-Policy

Fixes spring-cloudgh-2975
@joerg-richter-5234
Merge branch 'spring-cloud:main' into spring-cloud#2975-Suggestion-Ad…
0de0e50 
…d-Permissions-Policy-as-configurable-option-to-SecureHeaders-GatewayFilter
@joerg-richter-5234
Merge branch 'spring-cloud:main' into spring-cloud#2975-Suggestion-Ad…
45ccbb1 
…d-Permissions-Policy-as-configurable-option-to-SecureHeaders-GatewayFilter
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
waiting-for-triage
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Suggestion: Add Permissions-Policy as configurable option to SecureHeaders GatewayFilter
2 participants
@joerg-richter-5234 @spring-cloud-issues