play.filters.headers

SecurityHeadersFilter

object SecurityHeadersFilter

This class sets a number of common security headers on the HTTP request.

NOTE: Because these are security headers, they are "secure by default." If the filter is applied, but these fields are NOT defined in Configuration, the defaults on the filter are NOT omitted, but are instead set to the strictest possible value.

Source
SecurityHeadersFilter.scala
See also

Cross Domain Policy File Specification

Content-Security-Policy

X-XSS-Protection

X-Content-Type-Options

X-Frame-Options

Linear Supertypes
AnyRef, Any
Ordering
  1. Alphabetic
  2. By inheritance
Inherited
  1. SecurityHeadersFilter
  2. AnyRef
  3. Any
  1. Hide All
  2. Show all
Learn more about member selection
Visibility
  1. Public
  2. All

Value Members

  1. final def !=(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef
  2. final def !=(arg0: Any): Boolean

    Definition Classes
    Any
  3. final def ##(): Int

    Definition Classes
    AnyRef → Any
  4. final def ==(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef
  5. final def ==(arg0: Any): Boolean

    Definition Classes
    Any
  6. val CONTENT_SECURITY_POLICY_HEADER: String

  7. val DEFAULT_CONTENT_SECURITY_POLICY: String

  8. val DEFAULT_CONTENT_TYPE_OPTIONS: String

  9. val DEFAULT_FRAME_OPTIONS: String

  10. val DEFAULT_PERMITTED_CROSS_DOMAIN_POLICIES: String

  11. val DEFAULT_XSS_PROTECTION: String

  12. val X_CONTENT_TYPE_OPTIONS_HEADER: String

  13. val X_FRAME_OPTIONS_HEADER: String

  14. val X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER: String

  15. val X_XSS_PROTECTION_HEADER: String

  16. def apply(securityHeaderConfig: SecurityHeadersConfig): SecurityHeadersFilter

    Convenience method for creating a filter using SecurityHeadersConfig case class.

    Convenience method for creating a filter using SecurityHeadersConfig case class. Use this if you have settings that you want to specifically turn off by setting to None.

    securityHeaderConfig
    returns

  17. def apply(config: api.Configuration): SecurityHeadersFilter

    Convenience method for creating a filter using play.

    Convenience method for creating a filter using play.api.Configuration. Good for testing.

    config

    a configuration object that may contain string settings.

    returns

    a configured SecurityHeadersFilter.

  18. def apply(): SecurityHeadersFilter

    Convenience method for creating a SecurityHeadersFilter that reads settings from application.

    Convenience method for creating a SecurityHeadersFilter that reads settings from application.conf. Generally speaking, you'll want to use this or the apply(SecurityHeadersConfig) method.

    returns

    a configured SecurityHeadersFilter.

  19. final def asInstanceOf[T0]: T0

    Definition Classes
    Any
  20. def clone(): AnyRef

    Attributes
    protected[java.lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  21. final def eq(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef
  22. def equals(arg0: Any): Boolean

    Definition Classes
    AnyRef → Any
  23. def finalize(): Unit

    Attributes
    protected[java.lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( classOf[java.lang.Throwable] )
  24. final def getClass(): Class[_]

    Definition Classes
    AnyRef → Any
  25. def hashCode(): Int

    Definition Classes
    AnyRef → Any
  26. final def isInstanceOf[T0]: Boolean

    Definition Classes
    Any
  27. final def ne(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef
  28. final def notify(): Unit

    Definition Classes
    AnyRef
  29. final def notifyAll(): Unit

    Definition Classes
    AnyRef
  30. final def synchronized[T0](arg0: ⇒ T0): T0

    Definition Classes
    AnyRef
  31. def toString(): String

    Definition Classes
    AnyRef → Any
  32. final def wait(): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  33. final def wait(arg0: Long, arg1: Int): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  34. final def wait(arg0: Long): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )

Inherited from AnyRef

Inherited from Any

Ungrouped