ServerHeadersDsl

Allows customizing the CacheControlServerHttpHeadersWriter. Specifically it adds the following headers:

Allows configuration for Content Security Policy (CSP) Level 2.

Configures the ContentTypeOptionsServerHttpHeadersWriter which inserts the

Allows configuration for Cross-Origin-Embedder-Policy header.

Allows configuration for Cross-Origin-Opener-Policy header.

Allows configuration for Cross-Origin-Resource-Policy header.

Disables HTTP response headers.

Allows configuration for Feature Policy.

Allows customizing the XFrameOptionsServerHttpHeadersWriter which add the X-Frame-Options header.

Allows customizing the StrictTransportSecurityServerHttpHeadersWriter which provides support for HTTP Strict Transport Security (HSTS).

Allows configuration for Permissions Policy.

Allows configuration for Referrer Policy.

Configures custom headers writer

Note this is not comprehensive XSS protection!