HTTP security Headers Impact To OCSG Features
(Doc ID 2687373.1)
Last updated on JULY 06, 2020
Applies to:Oracle Communications Services Gatekeeper - Version 5.1.0 and later
Information in this document applies to any platform.
Most modern web browsers support various protection mechanisms for mitigating common types of web application attacks against web browsers. Some of the settings for these protection mechanisms are configured via security-related HTTP response headers. The web server can be configured to return the following HTTP response headers to improve the security posture of the web application by acting as an additional layer of protection, without changing the actual application code.
Please clarify, with security headers “X-Content-Type-Options”, “X-XSS-Protection”, and “Content-Security-Policy” headers added in the HTTP requests, is there any impact on OCSG product features?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document