Common\EventListener\ResponseSecurer::onKernelResponse PHP Метод

Документация по классу ResponseSecurer Показать файл Открыть проект

onKernelResponse() публичный Метод

Add some headers to the response to make our application more secure see https://www.owasp.org/index.php/List_of_useful_HTTP_headers

public onKernelResponse ( FilterResponseEvent $event )
$event	Symfony\Component\HttpKernel\Event\FilterResponseEvent

    public function onKernelResponse(FilterResponseEvent $event)
    {
        $headers = ['X-Frame-Options' => 'deny', 'X-XSS-Protection' => '1; mode=block', 'X-Content-Type-Options' => 'nosniff'];
        foreach ($headers as $header => $value) {
            if (!$event->getResponse()->headers->has($header)) {
                $event->getResponse()->headers->set($header, $value);
            }
        }
    }

ResponseSecurer

onKernelResponse