Table of Contents - secure_headers-5.0.5 Documentation
Pages
tasks.rake
Classes/Modules
ActionController
ActionController::Base
Object
Rails
SecureHeaders
SecureHeaders::ClearSiteData
SecureHeaders::ClearSiteDataConfigError
SecureHeaders::Configuration
SecureHeaders::Configuration::IllegalPolicyModificationError
SecureHeaders::Configuration::NotYetConfiguredError
SecureHeaders::ContentSecurityPolicy
SecureHeaders::ContentSecurityPolicyConfig
SecureHeaders::ContentSecurityPolicyConfigError
SecureHeaders::ContentSecurityPolicyReportOnlyConfig
SecureHeaders::Cookie
SecureHeaders::CookiesConfig
SecureHeaders::CookiesConfigError
SecureHeaders::DynamicConfig
SecureHeaders::ExpectCertificateTransparency
SecureHeaders::ExpectCertificateTransparencyConfigError
SecureHeaders::HashHelper
SecureHeaders::Middleware
SecureHeaders::NoOpHeaderConfig
SecureHeaders::PolicyManagement
SecureHeaders::PolicyManagement::ClassMethods
SecureHeaders::PublicKeyPins
SecureHeaders::PublicKeyPinsConfigError
SecureHeaders::Railtie
SecureHeaders::ReferrerPolicy
SecureHeaders::ReferrerPolicyConfigError
SecureHeaders::STSConfigError
SecureHeaders::StrictTransportSecurity
SecureHeaders::ViewHelpers
SecureHeaders::ViewHelpers::UnexpectedHashedScriptException
SecureHeaders::XContentTypeOptions
SecureHeaders::XContentTypeOptionsConfigError
SecureHeaders::XDOConfigError
SecureHeaders::XDownloadOptions
SecureHeaders::XFOConfigError
SecureHeaders::XFrameOptions
SecureHeaders::XPCDPConfigError
SecureHeaders::XPermittedCrossDomainPolicies
SecureHeaders::XXssProtection
SecureHeaders::XXssProtectionConfigError
Methods
::add_configuration — SecureHeaders::Configuration
::add_noop_configuration — SecureHeaders::Configuration
::append_content_security_policy_directives — SecureHeaders
::attrs — SecureHeaders::ContentSecurityPolicyConfig
::config_and_target — SecureHeaders
::config_for — SecureHeaders
::configure — SecureHeaders::Configuration
::content_security_policy_nonce — SecureHeaders
::content_security_policy_script_nonce — SecureHeaders
::content_security_policy_style_nonce — SecureHeaders
::csp_header_for_ua — SecureHeaders
::deep_copy — SecureHeaders::Configuration
::deep_copy_if_hash — SecureHeaders::Configuration
::default — SecureHeaders::Configuration
::get — SecureHeaders::Configuration
::guess_target — SecureHeaders
::header_classes_for — SecureHeaders
::header_hash_for — SecureHeaders
::included — SecureHeaders::PolicyManagement
::included — SecureHeaders::DynamicConfig
::make_header — SecureHeaders::ExpectCertificateTransparency
::make_header — SecureHeaders::XContentTypeOptions
::make_header — SecureHeaders::XDownloadOptions
::make_header — SecureHeaders::XXssProtection
::make_header — SecureHeaders::PublicKeyPins
::make_header — SecureHeaders::XPermittedCrossDomainPolicies
::make_header — SecureHeaders::XFrameOptions
::make_header — SecureHeaders::StrictTransportSecurity
::make_header — SecureHeaders::ReferrerPolicy
::make_header — SecureHeaders::ClearSiteData
::make_header_value — SecureHeaders::ClearSiteData
::named_append — SecureHeaders::Configuration
::named_appends — SecureHeaders::Configuration
::new — SecureHeaders::Middleware
::new — SecureHeaders::ExpectCertificateTransparency
::new — SecureHeaders::CookiesConfig
::new — SecureHeaders::ContentSecurityPolicy
::new — SecureHeaders::PublicKeyPins
::new — SecureHeaders::DynamicConfig
::new — SecureHeaders::Cookie
::new — SecureHeaders::Configuration
::opt_out_of_all_protection — SecureHeaders
::opt_out_of_header — SecureHeaders
::override — SecureHeaders::Configuration
::override_content_security_policy_directives — SecureHeaders
::override_secure_headers_request_config — SecureHeaders
::override_x_frame_options — SecureHeaders
::raise_on_unknown_target — SecureHeaders
::update_cached_csp — SecureHeaders
::use_content_security_policy_named_append — SecureHeaders
::use_secure_headers_override — SecureHeaders
::validate_config! — SecureHeaders::StrictTransportSecurity
::validate_config! — SecureHeaders::XFrameOptions
::validate_config! — SecureHeaders::ClearSiteData
::validate_config! — SecureHeaders::ExpectCertificateTransparency
::validate_config! — SecureHeaders::XXssProtection
::validate_config! — SecureHeaders::PublicKeyPins
::validate_config! — SecureHeaders::XContentTypeOptions
::validate_config! — SecureHeaders::ReferrerPolicy
::validate_config! — SecureHeaders::XPermittedCrossDomainPolicies
::validate_config! — SecureHeaders::Cookie
::validate_config! — SecureHeaders::XDownloadOptions
#== — SecureHeaders::DynamicConfig
#[] — SecureHeaders::NoOpHeaderConfig
#[] — SecureHeaders::DynamicConfig
#[]= — SecureHeaders::NoOpHeaderConfig
#[]= — SecureHeaders::DynamicConfig
#already_flagged? — SecureHeaders::Cookie
#append — SecureHeaders::DynamicConfig
#append_content_security_policy_directives — SecureHeaders
#append_nonce — SecureHeaders::ContentSecurityPolicy
#boolean? — SecureHeaders::PolicyManagement::ClassMethods
#boom — SecureHeaders::NoOpHeaderConfig
#build_media_type_list_directive — SecureHeaders::ContentSecurityPolicy
#build_sandbox_list_directive — SecureHeaders::ContentSecurityPolicy
#build_source_list_directive — SecureHeaders::ContentSecurityPolicy
#build_value — SecureHeaders::ContentSecurityPolicy
#cache_headers! — SecureHeaders::Configuration
#cache_hpkp_report_host — SecureHeaders::Configuration
#cached_headers= — SecureHeaders::Configuration
#call — SecureHeaders::Middleware
#combine_policies — SecureHeaders::PolicyManagement::ClassMethods
#conditionally_flag? — SecureHeaders::Cookie
#content_security_policy_nonce — SecureHeaders::ViewHelpers
#content_security_policy_script_nonce — SecureHeaders::ViewHelpers
#content_security_policy_script_nonce — SecureHeaders
#content_security_policy_style_nonce — SecureHeaders::ViewHelpers
#content_security_policy_style_nonce — SecureHeaders
#cookies= — SecureHeaders::Configuration
#csp= — SecureHeaders::Configuration
#csp_report_only= — SecureHeaders::Configuration
#dedup_source_list — SecureHeaders::ContentSecurityPolicy
#default_for — SecureHeaders::PolicyManagement::ClassMethods
#directive_value — SecureHeaders::DynamicConfig
#directives — SecureHeaders::ContentSecurityPolicy
#dup — SecureHeaders::NoOpHeaderConfig
#dup — SecureHeaders::Configuration
#dup — SecureHeaders::DynamicConfig
#enforced_directive — SecureHeaders::ExpectCertificateTransparency
#ensure_array_of_strings! — SecureHeaders::PolicyManagement::ClassMethods
#ensure_valid_directive! — SecureHeaders::PolicyManagement::ClassMethods
#ensure_valid_sources! — SecureHeaders::PolicyManagement::ClassMethods
#extract_options — SecureHeaders::ViewHelpers
#flag_cookie? — SecureHeaders::Cookie
#flag_cookies! — SecureHeaders::Middleware
#flag_samesite? — SecureHeaders::Cookie
#flag_samesite_enforcement? — SecureHeaders::Cookie
#flag_samesite_lax? — SecureHeaders::Cookie
#flag_samesite_strict? — SecureHeaders::Cookie
#from_hash — SecureHeaders::DynamicConfig
#generate_csp_headers — SecureHeaders::Configuration
#generate_csp_headers_for_config — SecureHeaders::Configuration
#hash_source — SecureHeaders::HashHelper
#hashed_javascript_tag — SecureHeaders::ViewHelpers
#hashed_style_tag — SecureHeaders::ViewHelpers
#hashed_tag — SecureHeaders::ViewHelpers
#hpkp= — SecureHeaders::Configuration
#hpkp_report_host= — SecureHeaders::Configuration
#httponly? — SecureHeaders::Cookie
#is_hash? — SecureHeaders::CookiesConfig
#is_true_or_opt_out? — SecureHeaders::CookiesConfig
#keep_wildcard_sources — SecureHeaders::ContentSecurityPolicy
#keys — SecureHeaders::NoOpHeaderConfig
#list_directive? — SecureHeaders::PolicyManagement::ClassMethods
#make_header — SecureHeaders::PolicyManagement::ClassMethods
#make_report_only — SecureHeaders::ContentSecurityPolicyReportOnlyConfig
#make_report_only — SecureHeaders::ContentSecurityPolicyConfig
#max_age_directive — SecureHeaders::PublicKeyPins
#max_age_directive — SecureHeaders::ExpectCertificateTransparency
#media_type_list? — SecureHeaders::PolicyManagement::ClassMethods
#merge — SecureHeaders::DynamicConfig
#merge! — SecureHeaders::DynamicConfig
#merge_policy_additions — SecureHeaders::PolicyManagement::ClassMethods
#minify_source_list — SecureHeaders::ContentSecurityPolicy
#modified? — SecureHeaders::DynamicConfig
#name — SecureHeaders::PublicKeyPins
#name — SecureHeaders::ContentSecurityPolicy
#nonced_javascript_include_tag — SecureHeaders::ViewHelpers
#nonced_javascript_pack_tag — SecureHeaders::ViewHelpers
#nonced_javascript_tag — SecureHeaders::ViewHelpers
#nonced_style_tag — SecureHeaders::ViewHelpers
#nonced_stylesheet_link_tag — SecureHeaders::ViewHelpers
#nonced_stylesheet_pack_tag — SecureHeaders::ViewHelpers
#nonced_tag — SecureHeaders::ViewHelpers
#nonces_supported? — SecureHeaders::PolicyManagement::ClassMethods
#nonces_supported? — SecureHeaders::ContentSecurityPolicy
#normalize_child_frame_src — SecureHeaders::ContentSecurityPolicy
#opt_out — SecureHeaders::Configuration
#opt_out? — SecureHeaders::DynamicConfig
#opt_out? — SecureHeaders::NoOpHeaderConfig
#opt_out_of_header — SecureHeaders
#override_content_security_policy_directives — SecureHeaders
#override_secure — SecureHeaders::Middleware
#override_x_frame_options — SecureHeaders
#parse — SecureHeaders::Cookie
#parsed_cookie — SecureHeaders::Cookie
#pin_directives — SecureHeaders::PublicKeyPins
#populate_fetch_source_with_default! — SecureHeaders::PolicyManagement::ClassMethods
#populate_nonces — SecureHeaders::ContentSecurityPolicy
#reject_all_values_if_none — SecureHeaders::ContentSecurityPolicy
#report_only? — SecureHeaders::ContentSecurityPolicyReportOnlyConfig
#report_only? — SecureHeaders::ContentSecurityPolicyConfig
#report_uri_directive — SecureHeaders::ExpectCertificateTransparency
#report_uri_directive — SecureHeaders::PublicKeyPins
#samesite? — SecureHeaders::Cookie
#samesite_cookie — SecureHeaders::Cookie
#sandbox_list? — SecureHeaders::PolicyManagement::ClassMethods
#scheme — SecureHeaders::Middleware
#secure? — SecureHeaders::Cookie
#secure_cookies= — SecureHeaders::Configuration
#source_list? — SecureHeaders::PolicyManagement::ClassMethods
#strip_source_schemes — SecureHeaders::ContentSecurityPolicy
#subdomain_directive — SecureHeaders::PublicKeyPins
#supported_directives — SecureHeaders::ContentSecurityPolicy
#symbol_to_hyphen_case — SecureHeaders::ContentSecurityPolicy
#to_h — SecureHeaders::NoOpHeaderConfig
#to_h — SecureHeaders::DynamicConfig
#to_s — SecureHeaders::Cookie
#ua_to_variation — SecureHeaders::PolicyManagement::ClassMethods
#unexpected_hash_error_message — SecureHeaders::ViewHelpers
#update_directive — SecureHeaders::DynamicConfig
#update_x_frame_options — SecureHeaders::Configuration
#use_content_security_policy_named_append — SecureHeaders
#use_secure_headers_override — SecureHeaders
#validate! — SecureHeaders::CookiesConfig
#validate_config! — SecureHeaders::Configuration
#validate_config! — SecureHeaders::CookiesConfig
#validate_config! — SecureHeaders::PolicyManagement::ClassMethods
#validate_directive! — SecureHeaders::PolicyManagement::ClassMethods
#validate_exclusive_use_of_hash_constraints! — SecureHeaders::CookiesConfig
#validate_exclusive_use_of_samesite_enforcement! — SecureHeaders::CookiesConfig
#validate_hash_or_true_or_opt_out! — SecureHeaders::CookiesConfig
#validate_httponly_config! — SecureHeaders::CookiesConfig
#validate_media_type_expression! — SecureHeaders::PolicyManagement::ClassMethods
#validate_samesite_boolean_config! — SecureHeaders::CookiesConfig
#validate_samesite_config! — SecureHeaders::CookiesConfig
#validate_samesite_hash_config! — SecureHeaders::CookiesConfig
#validate_sandbox_expression! — SecureHeaders::PolicyManagement::ClassMethods
#validate_secure_config! — SecureHeaders::CookiesConfig
#validate_source_expression! — SecureHeaders::PolicyManagement::ClassMethods
#value — SecureHeaders::ExpectCertificateTransparency
#value — SecureHeaders::PublicKeyPins
#value — SecureHeaders::ContentSecurityPolicy
#write_attribute — SecureHeaders::DynamicConfig