From 8cef7fbeed5b8f1255535fcf1cf0c7304df6d447 Mon Sep 17 00:00:00 2001 From: Kruthi Bhat Date: Tue, 16 Nov 2021 14:31:18 -0500 Subject: Fix for Penetration test _ Session and cookie management Change-Id: I5597f4e25acaf0352d66870911d6c99503a01229 Issue-ID: VID-987 Signed-off-by: krutbhat@att.com --- epsdk-app-onap/src/main/webapp/WEB-INF/web.xml | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) diff --git a/epsdk-app-onap/src/main/webapp/WEB-INF/web.xml b/epsdk-app-onap/src/main/webapp/WEB-INF/web.xml index e90f837d3..e445bac5c 100755 --- a/epsdk-app-onap/src/main/webapp/WEB-INF/web.xml +++ b/epsdk-app-onap/src/main/webapp/WEB-INF/web.xml @@ -70,6 +70,23 @@ charset-to-utf8-filter /app/ui/* + + httpHeaderSecurity + org.apache.catalina.filters.HttpHeaderSecurityFilter + true + + antiClickJackingEnabled + true + + + antiClickJackingOption + DENY + + + + httpHeaderSecurity + /* + 404 -- cgit 1.2.3-korg