talos-openbmc - Talos™ II OpenBMC sources

diff options

author	Joseph Reynolds <jrey@us.ibm.com>	2018-08-30 21:39:37 -0500
committer	Brad Bishop <bradleyb@fuzziesquirrel.com>	2018-09-24 14:15:21 -0400
commit	4028f33b111bb4e66493732d9c99f1f6a6fb1744 (patch)
tree	661d70a90bc809b28d859bf35aae8a35d756ed51 /poky
parent	42ed80522120acd4337f0ae7f33e9fe62e71ff02 (diff)
download	talos-openbmc-4028f33b111bb4e66493732d9c99f1f6a6fb1744.tar.gz talos-openbmc-4028f33b111bb4e66493732d9c99f1f6a6fb1744.zip

Nginx adds http security headers

Nginx now adds security-related headers to HTTP responses per https://www.owasp.org/index.php/OWASP_Secure_Headers_Project and consistent with openbmc/bmcweb (see header file include/security_headers_middleware.hpp). Tested: curl -D headers http://${bmc} redirects to https No security headers apply, and none are sent curl https://${bmc} contains security headers and works properly curl https://${bmc}/xyz/openbmc_project/software contains Strict-Transport-Security header, and works curl ... -X POST -T ${image} https://${bmc}/upload/image" works firefox http redirects to https firefox https://${bmc}/ logs in and works Resolves openbmc/openbmc#3195 (From meta-ibm rev: 8202b2639cba28a71640db48e38f6b7f1d3eaed0) Change-Id: Ie20169abbca02471fa5dc89bebba8a6cdf722cd6 Signed-off-by: Joseph Reynolds <jrey@us.ibm.com> Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>

Diffstat (limited to 'poky')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: