HTTP Header Security - Version 2020 (10.0) - Hexagon

Smart Materials Web Installation (10.1)

Language
English
Smart Materials/Smart Reference Data Version
10.1

To configure http header security, do the following:

  1. Navigate to: <tomcat-directory>\conf\web.xml

  2. In web.xml, search for <filter-name>httpHeaderSecurity</filter-name>.

  3. Edit as shown below:

    <filter>

    <filter-name>httpHeaderSecurity</filter-name>

    <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>

    <async-supported>true</async-supported>

    <init-param>

    <param-name>hstsEnabled</param-name>

    <param-value>true</param-value>

    </init-param>

    <init-param>

    <param-name>hstsMaxAgeSeconds</param-name>

    <param-value>31556927</param-value>

    </init-param>

    <init-param>

    <param-name>hstsIncludeSubDomains</param-name>

    <param-value>true</param-value>

    </init-param>

    <init-param>

    <param-name>antiClickJackingEnabled</param-name>

    <param-value>true</param-value>

    </init-param>

    <init-param>

    <param-name>antiClickJackingOption</param-name>

    <param-value>SAMEORIGIN</param-value>

    </init-param>

    <init-param>

    <param-name>xssProtectionEnabled</param-name>

    <param-value>true</param-value>

    </init-param>

    </filter>