openstack/openstack-helm-infra
Code Issues Proposed changes

Merge "Nagios – API Handling – HTTP Security Headers Not Present"

Browse Source
This commit is contained in:
Zuul 2019-08-14 00:59:23 +00:00 committed by Gerrit Code Review
commit 20dafdaddb
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
nagios/values.yaml
View File

@ -191,6 +191,11 @@ network:
nginx.ingress.kubernetes.io/session-cookie-hash: sha1 nginx.ingress.kubernetes.io/session-cookie-hash: sha1
nginx.ingress.kubernetes.io/session-cookie-expires: "600" nginx.ingress.kubernetes.io/session-cookie-expires: "600"
nginx.ingress.kubernetes.io/session-cookie-max-age: "600" nginx.ingress.kubernetes.io/session-cookie-max-age: "600"
nginx.ingress.kubernetes.io/configuration-snippet: |
more_set_headers "X-Content-Type-Options: 'nosniff'";
more_set_headers "X-Frame-Options: SAMEORIGIN";
more_set_headers "Content-Security-Policy: script-src 'self'";
more_set_headers "X-XSS-Protection: 1; mode=block";
node_port: node_port:
enabled: false enabled: false
port: 30925 port: 30925