area17/twill-security-headers

A Twill Capsule to add and handle Security Headers

v1.0.6 2023-03-02 14:25 UTC

This package is auto-updated.

Last update: 2023-03-30 14:37:48 UTC


README

This Twill Capsule is intended to enable developers add Security Headers configuration to applications, giving users a friendly dashboard to configure these headers:

Screenshots

CMS configuration

screenshot 1

screenshot 2

Mozilla Observatory security headers check

screenshot 2

Supported Headers

This capsule also adds an option for removing any unwanted headers from the response.

Installing

Require the Composer package:

composer require area17/twill-security-headers

Publish the configuration

php artisan vendor:publish --provider="A17\TwillSecurityHeaders\ServiceProvider"

Disabling

This package is enabled and injects itself automatically. To disable it you just need to add to .env:

TWILL_SECURITY_HEADERS_ENABLED=false

Contribute

Please contribute to this project by submitting pull requests.