17Nov 2013
0 Com

HTTP header security specification

A start to the newly added Transport security BDD story specifies secure HTTP headers for the base URL of the app: Might refactor so that HSTS applies to the base URL, but X-Frame-Options and CSP [...]