play.filters.headers

SecurityHeadersFilter

object SecurityHeadersFilter

This class sets a number of common security headers on the HTTP request.

NOTE: Because these are security headers, they are "secure by default." If the filter is applied, but these fields are NOT defined in Configuration, the defaults on the filter are NOT omitted, but are instead set to the strictest possible value.

Source
SecurityHeadersFilter.scala
See also

Cross Domain Policy File Specification

Content-Security-Policy

X-XSS-Protection

X-Content-Type-Options

X-Frame-Options

Linear Supertypes
AnyRef, Any
Ordering
  1. Alphabetic
  2. By inheritance
Inherited
  1. SecurityHeadersFilter
  2. AnyRef
  3. Any
  1. Hide All
  2. Show all
Learn more about member selection
Visibility
  1. Public
  2. All

Value Members

  1. final def !=(arg0: Any): Boolean

    Definition Classes
    AnyRef → Any
  2. final def ##(): Int

    Definition Classes
    AnyRef → Any
  3. final def ==(arg0: Any): Boolean

    Definition Classes
    AnyRef → Any
  4. val CONTENT_SECURITY_POLICY_HEADER: String

  5. val DEFAULT_CONTENT_SECURITY_POLICY: String

  6. val DEFAULT_CONTENT_TYPE_OPTIONS: String

  7. val DEFAULT_FRAME_OPTIONS: String

  8. val DEFAULT_PERMITTED_CROSS_DOMAIN_POLICIES: String

  9. val DEFAULT_XSS_PROTECTION: String

  10. val X_CONTENT_TYPE_OPTIONS_HEADER: String

  11. val X_FRAME_OPTIONS_HEADER: String

  12. val X_PERMITTED_CROSS_DOMAIN_POLICIES_HEADER: String

  13. val X_XSS_PROTECTION_HEADER: String

  14. def apply(securityHeaderConfig: ⇒ SecurityHeadersConfig): SecurityHeadersFilter

    Convenience method for creating a filter using SecurityHeadersConfig case class.

    Convenience method for creating a filter using SecurityHeadersConfig case class. Use this if you have settings that you want to specifically turn off by setting to None.

    securityHeaderConfig
    returns

  15. def apply(config: api.Configuration): SecurityHeadersFilter

    Convenience method for creating a filter using play.api.Configuration.

    Convenience method for creating a filter using play.api.Configuration. Good for testing.

    config

    a configuration object that may contain string settings.

    returns

    a configured SecurityHeadersFilter.

  16. def apply(): SecurityHeadersFilter

    Convenience method for creating a SecurityHeadersFilter that reads settings from application.conf.

    Convenience method for creating a SecurityHeadersFilter that reads settings from application.conf. Generally speaking, you'll want to use this or the apply(SecurityHeadersConfig) method.

    returns

    a configured SecurityHeadersFilter.

  17. final def asInstanceOf[T0]: T0

    Definition Classes
    Any
  18. def clone(): AnyRef

    Attributes
    protected[java.lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  19. final def eq(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef
  20. def equals(arg0: Any): Boolean

    Definition Classes
    AnyRef → Any
  21. def finalize(): Unit

    Attributes
    protected[java.lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( classOf[java.lang.Throwable] )
  22. final def getClass(): Class[_]

    Definition Classes
    AnyRef → Any
  23. def hashCode(): Int

    Definition Classes
    AnyRef → Any
  24. final def isInstanceOf[T0]: Boolean

    Definition Classes
    Any
  25. final def ne(arg0: AnyRef): Boolean

    Definition Classes
    AnyRef
  26. final def notify(): Unit

    Definition Classes
    AnyRef
  27. final def notifyAll(): Unit

    Definition Classes
    AnyRef
  28. final def synchronized[T0](arg0: ⇒ T0): T0

    Definition Classes
    AnyRef
  29. def toString(): String

    Definition Classes
    AnyRef → Any
  30. final def wait(): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  31. final def wait(arg0: Long, arg1: Int): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  32. final def wait(arg0: Long): Unit

    Definition Classes
    AnyRef
    Annotations
    @throws( ... )

Inherited from AnyRef

Inherited from Any

Ungrouped