public/grafana
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
053f5f5dcc1c6eb18151dcfb2a0acf411bf467f6
grafana/pkg/middleware
T
History
Kyle Brandt 22a991ff66 middleware: add security related HTTP(S) response headers (#17522) 
* x_xss_protection
  * strict_transport_security (HSTS)
  * x_content_type_options

these are currently defaulted to false (off) until the next minor release.

fixes #17509

(cherry picked from commit 599514ad68)
2019-06-17 12:07:51 +01:00
..
auth_proxy
auth_proxy: non-negative cache TTL (#17495)
2019-06-17 12:07:51 +01:00
auth_proxy.go
auth proxy: log any error in middleware (#17296)
2019-05-27 14:30:34 +02:00
auth_test.go
Chore: use remote cache instead of session storage (#16114)
2019-04-08 14:31:46 +03:00
auth.go
teams: better names for api permissions.
2019-03-19 14:01:20 +01:00
dashboard_redirect_test.go
Chore: use remote cache instead of session storage (#16114)
2019-04-08 14:31:46 +03:00
dashboard_redirect.go
Revert "Opportunities to unindent code (unindent)"
2018-05-02 14:06:46 +02:00
headers.go
refactor datasource caching
2018-10-30 09:31:56 +01:00
logger.go
rename Context to ReqContext
2018-03-07 11:54:50 -05:00
middleware_test.go
Security: Add new setting allow_embedding (#16853)
2019-05-06 09:56:23 +02:00
middleware.go
middleware: add security related HTTP(S) response headers (#17522)
2019-06-17 12:07:51 +01:00
org_redirect_test.go
Auth: Enable retries and transaction for some db calls for auth tokens (#16785)
2019-04-30 14:42:01 +02:00
org_redirect.go
login users based on token cookie
2019-01-16 16:44:40 +01:00
perf.go
rename Context to ReqContext
2018-03-07 11:54:50 -05:00
quota_test.go
Auth: Enable retries and transaction for some db calls for auth tokens (#16785)
2019-04-30 14:42:01 +02:00
quota.go
use authtoken for session quota restrictions
2019-02-12 15:10:55 +01:00
recovery_test.go
Security: Responses from backend should not be cached (#16848)
2019-05-06 09:22:59 +02:00
recovery.go
fix for issue with error view in production builds
2018-11-20 13:47:45 +01:00
render_auth.go
Backend image rendering as plugin (#11966)
2018-05-24 15:26:27 +02:00
request_metrics.go
moves metric package to /infra
2019-02-24 21:12:51 +01:00
request_tracing.go
mark >=400 responses as error
2017-09-18 11:08:58 +02:00
util.go
prometheus: enable gzip for /metrics endpoint
2017-10-23 09:35:46 +02:00
validate_host.go
rename Context to ReqContext
2018-03-07 11:54:50 -05:00