Class: Aws::CloudFront::Types::ResponseHeadersPolicySecurityHeadersConfig

Inherits:
Struct
  • Object
show all
Includes:
Structure
Defined in:
lib/aws-sdk-cloudfront/types.rb

Overview

A configuration for a set of security-related HTTP response headers. CloudFront adds these headers to HTTP responses that it sends for requests that match a cache behavior associated with this response headers policy.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#content_security_policyTypes::ResponseHeadersPolicyContentSecurityPolicy

The policy directives and their values that CloudFront includes as values for the ‘Content-Security-Policy` HTTP response header.

For more information about the ‘Content-Security-Policy` HTTP response header, see [Content-Security-Policy] in the MDN Web Docs.

[1]: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy



10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
# File 'lib/aws-sdk-cloudfront/types.rb', line 10401

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#content_type_optionsTypes::ResponseHeadersPolicyContentTypeOptions

Determines whether CloudFront includes the ‘X-Content-Type-Options` HTTP response header with its value set to `nosniff`.

For more information about the ‘X-Content-Type-Options` HTTP response header, see [X-Content-Type-Options] in the MDN Web Docs.

[1]: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options



10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
# File 'lib/aws-sdk-cloudfront/types.rb', line 10401

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#frame_optionsTypes::ResponseHeadersPolicyFrameOptions

Determines whether CloudFront includes the ‘X-Frame-Options` HTTP response header and the header’s value.

For more information about the ‘X-Frame-Options` HTTP response header, see [X-Frame-Options] in the MDN Web Docs.

[1]: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options



10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
# File 'lib/aws-sdk-cloudfront/types.rb', line 10401

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#referrer_policyTypes::ResponseHeadersPolicyReferrerPolicy

Determines whether CloudFront includes the ‘Referrer-Policy` HTTP response header and the header’s value.

For more information about the ‘Referrer-Policy` HTTP response header, see [Referrer-Policy] in the MDN Web Docs.

[1]: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy



10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
# File 'lib/aws-sdk-cloudfront/types.rb', line 10401

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#strict_transport_securityTypes::ResponseHeadersPolicyStrictTransportSecurity

Determines whether CloudFront includes the ‘Strict-Transport-Security` HTTP response header and the header’s value.

For more information about the ‘Strict-Transport-Security` HTTP response header, see [Security headers] in the *Amazon CloudFront Developer Guide* and [Strict-Transport-Security] in the MDN Web Docs.

[1]: docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/understanding-response-headers-policies.html#understanding-response-headers-policies-security [2]: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security



10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
# File 'lib/aws-sdk-cloudfront/types.rb', line 10401

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end

#xss_protectionTypes::ResponseHeadersPolicyXSSProtection

Determines whether CloudFront includes the ‘X-XSS-Protection` HTTP response header and the header’s value.

For more information about the ‘X-XSS-Protection` HTTP response header, see [X-XSS-Protection] in the MDN Web Docs.

[1]: developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection



10401
10402
10403
10404
10405
10406
10407
10408
10409
10410
# File 'lib/aws-sdk-cloudfront/types.rb', line 10401

class ResponseHeadersPolicySecurityHeadersConfig < Struct.new(
  :xss_protection,
  :frame_options,
  :referrer_policy,
  :content_security_policy,
  :content_type_options,
  :strict_transport_security)
  SENSITIVE = []
  include Aws::Structure
end