unrolled/secure

Issues

• No options about Cache-Control, need support

  #93 opened 10 months ago by anhuibl
  1

• `HPKP` & `Expect-CT` are deprecated.

  #91 opened a year ago by AshGw
  0

• Support for Access-Control-Allow-Origin headers?

  #72 opened 2 years ago by bramp
  3

• SQL Injection detection based on payload

  #78 opened 2 years ago by batara666
  3

• Add a Content Security Policy builder

  #73 opened 2 years ago by bramp
  5

• Add Ability to pass a custom AllowedHosts function that returns a list

  #81 opened 2 years ago by franklinexpress
  0

• Any new releases?

  #79 opened 4 years ago by samstride
  2

• Allow configure Permissions-Policy: headers

  #76 opened 4 years ago by karnauskas
  0

• Panic when accession newR.Context()

  #70 opened 5 years ago by ScottBrooks
  2

• go.mod references codegangsta/negroni rather than urfave/negroni

  #68 opened 5 years ago by johnweldon
  1

• certificate bidirectional authentication

  #67 opened 5 years ago by excxapp
  1

• I encountered a problem when i try to install this pakage.

  #63 opened 5 years ago by matchseller
  2

• Bad Host (Cloudflare)

  #66 opened 5 years ago
  2

• Static SecureHeaderKey does not allow multiple instances

  #64 opened 5 years ago by dtomcej
  0

• ModifyResponseHeader rewrites response headers indiscriminately

  #61 opened 5 years ago by dtomcej
  0

• 不能用443端口吗？

  #60 opened 5 years ago by heroghost
  4

• Unnecessary redirect in SSL

  #57 opened 5 years ago by elielgoncalves
  0

• Gin accessing CSP nonce

  #56 opened 5 years ago by Raggaer
  6

• use for microservices facing public

  #53 opened 6 years ago by mlevkov
  2

• AllowedHost check wildcard for subdomains

  #50 opened 6 years ago by pzeinlinger
  3

• HSTS seconds in docs is 10 years?

  #49 opened 6 years ago by uLan08
  1

• Dynamic CSP Nonce Support

  #25 opened 7 years ago by srikrsna
  3

• Unexported `processRequest` does not allow modification of the request before next

  #45 opened 6 years ago by dtomcej
  2

• How should I use CSP nonce with Gin?

  #43 opened 6 years ago by hashworks
  1

• Add support for Expect-CT security header

  #41 opened 6 years ago by Yggdrasil
  2

• Propose logo

  #40 opened 6 years ago by dee-y
  1

• How to redirect from HTTP to HTTPS with CSP set?

  #37 opened 6 years ago by ajeecai
  2

• force ssl only if X-Forwarded-Proto exists and its not https?

  #28 opened 7 years ago by u007
  5

• Can't get $NONCE to work properly

  #29 opened 7 years ago by 16n
  4

• SSLRedirect not working if only TLS is served

  #23 opened 7 years ago by Nhoya
  4

• Seeking information about redirecting HTTP to HTTPS

  #22 opened 7 years ago by amankapoor
  4

• Support for Echo 3

  #20 opened 7 years ago by StarpTech
  3

• Allow customization of the X-XSS-Protection header

  #19 opened 7 years ago by F21
  2

• Allow for a proxy header to specify the Host

  #15 opened 8 years ago by kujenga
  1

• Add support for "Referrer-Policy" header

  #13 opened 8 years ago by kujenga
  1

• Could you provide an example for the chi library

  #12 opened 8 years ago by msaron
  2

• Reference alt CSP module

  #8 opened 8 years ago by yanfali
  1

• WSS support

  #7 opened 8 years ago by yanfali
  2

• 500 error when redirecting from http to https on HEAD requests

  #5 opened 9 years ago by BrodrickChilds
  1

• HSTS Warnings

  #1 opened 10 years ago by jpillora
  8