Matthew Thode 81a28142a0 Add security headers to web accessable services. ... Adds the following headers as static: X-Content-Type-Options "nosniff" X-XSS-Protection "1; mode=block" append Content-Security-Policy "default-src 'self' https: wss:;" nosniff prevents non-executable mime times from becoming executable. The X-XSS-Protection header will prevent the loading of a page if the browser detects an xss attack. The Content-Security-Policy declares what dynamic resources are allowed to load. Adds the following header as user-setable via the keystone_x_frame_options variable. X-Frame-Options "DENY" By default the X-Frame-Options header denies embedding in an iframe. Change-Id: Iadd3e93bdb7e9d41ae1d027196367448dbce19f1 Partial-Bug: 1717321		2017-10-22 03:01:16 +00:00
..
keystone-credential-rotate.sh.j2	Address ansible_ssh_* var deprecation	2016-09-17 17:50:47 -04:00
keystone-fernet-rotate.sh.j2	Address ansible_ssh_* var deprecation	2016-09-17 17:50:47 -04:00
keystone-httpd-mpm.conf.j2	Add support to tune the keystone apache MPM settings	2016-05-04 11:50:06 -04:00
keystone-httpd.conf.j2	Add security headers to web accessable services.	2017-10-22 03:01:16 +00:00
keystone-ports.conf.j2	Allow Apache ports to be specified per VHost	2017-01-09 14:55:39 +00:00
keystone-systemd-tempfiles.j2	Include init_systemd taskfile once	2017-07-05 17:12:07 -07:00
keystone-uwsgi.ini.j2	Install and configure Nginx	2016-08-29 17:03:07 -07:00
keystone-uwsgi_systemd-init.j2	Include init_systemd taskfile once	2017-07-05 17:12:07 -07:00
keystone.conf.j2	Deprecate rpc_backend option	2017-06-17 11:49:07 +00:00
keystone.domain.conf.j2	Implement multi-domain LDAP configuration for Keystone	2016-01-26 13:08:57 +00:00
keystone_nginx.conf.j2	Add security headers to web accessable services.	2017-10-22 03:01:16 +00:00
shibboleth-attribute-map.xml.j2	Keystone Federation Service Provider Configuration	2015-08-07 08:44:51 +00:00
shibboleth2.xml.j2	Fix keystone shibboleth template to detect ssl usage correctly	2015-09-04 13:30:40 +01:00