[wp-trac] [WordPress Trac] #38536: Hook/Function to Set Content-Security-Policy
WordPress Trac
noreply at wordpress.org
Thu Oct 27 21:14:24 UTC 2016
#38536: Hook/Function to Set Content-Security-Policy
-----------------------------+------------------------------
Reporter: bhubbard | Owner:
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: trunk
Severity: normal | Resolution:
Keywords: | Focuses:
-----------------------------+------------------------------
Comment (by voldemortensen):
The hook is already in core. `send_headers` works great. And for wp-admin
you can (ab)use `admin_init`.
I like this idea. I would also like to see other headers introduced like
`X-XSS-Protection: 1` and `X-Content-Type-Options: nosniff`.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/38536#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list