Skip to content
GitLab
Projects Groups Topics Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
  • Sign in
  • A archmanweb
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Graph
    • Compare revisions
    • Locked files
  • Issues 10
    • Issues 10
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
  • Merge requests 0
    • Merge requests 0
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Artifacts
    • Schedules
    • Test cases
  • Deployments
    • Deployments
    • Releases
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • Arch LinuxArch Linux
  • archmanweb
  • Issues
  • #28
Closed
Open
Issue created Jan 16, 2021 by Jelle van der Waa@jelle🚧Contributor

Add secure headers

See the securityheaders.com report, some security headers are missing.

  • X_FRAME_OPTIONS
  • Referrer policy
  • X-Content-Type-Options

django-csp needs to be packaged in our repos to be enabled and configured for Content-Security-Policy.

Edited Jan 16, 2021 by Jelle van der Waa
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking