Configuring security headers on WebSphere 9.0.5.13 involves the following steps:
Click on Add and enter the following properties and their values: a. com.ibm.ws.webcontainer.enableTransparentContentProtection=true b. com.ibm.ws.webcontainer.security.FilterXSS=true c. com.ibm.ws.webcontainer.security.FilterDisableJS=true d. com.ibm.ws.webcontainer.security.FilterScanUploadFiles=true e. com.ibm.ws.webcontainer.security.FilterEncoding=true
Note: These properties enable content protection, XSS filter, disable JS execution, scan uploaded files, and encoding.
Save the changes and restart the server.
Once the server is restarted, it will apply these security headers to all incoming requests. You can verify this by checking the headers using a browser extension or a command-line tool such as cURL.
Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss
Asked: 2021-10-29 11:00:00 +0000
Seen: 8 times
Last updated: Apr 28 '22
What is the method to entirely disregard BUILD_INTERFACE libraries during the installation process?
How to make the line visible in a React Apexcharts Line Chart?
How can the ca certificate be updated for pgadmin?
How does a tag in flex affect the arrangement of the container?
How can I utilize custom properties for the Picturebox control?
What advanced CSS properties can I use to align my div to the center of my web page?
What is the method of accessing properties within the .then function utilizing vue.js?