Add content-security-policy and x-frame-options to HttpHeaderNames
Motivation: These headers can be used to prevent clickjacking. Modifications: Add static fields for content-security-policy and x-frame-options Result: Expose general useful names
This commit is contained in:
parent
42789d43de
commit
cc1a209185
|
@ -144,6 +144,10 @@ public final class HttpHeaderNames {
|
|||
* {@code "content-range"}
|
||||
*/
|
||||
public static final AsciiString CONTENT_RANGE = new AsciiString("content-range");
|
||||
/**
|
||||
* {@code "content-security-policy"}
|
||||
*/
|
||||
public static final CharSequence CONTENT_SECURITY_POLICY = new AsciiString("content-security-policy");
|
||||
/**
|
||||
* {@code "content-type"}
|
||||
*/
|
||||
|
@ -346,6 +350,10 @@ public final class HttpHeaderNames {
|
|||
* {@code "www-authenticate"}
|
||||
*/
|
||||
public static final AsciiString WWW_AUTHENTICATE = new AsciiString("www-authenticate");
|
||||
/**
|
||||
* {@code "x-frame-options"}
|
||||
*/
|
||||
public static final CharSequence X_FRAME_OPTIONS = new AsciiString("x-frame-options");
|
||||
|
||||
private HttpHeaderNames() { }
|
||||
}
|
||||
|
|
Loading…
Reference in New Issue
Block a user