aws-cdk-lib.aws_cloudfront.CfnResponseHeadersPolicy.SecurityHeadersConfigProperty

interface SecurityHeadersConfigProperty

LanguageType name
.NETAmazon.CDK.AWS.CloudFront.CfnResponseHeadersPolicy.SecurityHeadersConfigProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awscloudfront#CfnResponseHeadersPolicy_SecurityHeadersConfigProperty
Javasoftware.amazon.awscdk.services.cloudfront.CfnResponseHeadersPolicy.SecurityHeadersConfigProperty
Pythonaws_cdk.aws_cloudfront.CfnResponseHeadersPolicy.SecurityHeadersConfigProperty
TypeScript aws-cdk-lib » aws_cloudfront » CfnResponseHeadersPolicy » SecurityHeadersConfigProperty

A configuration for a set of security-related HTTP response headers.

CloudFront adds these headers to HTTP responses that it sends for requests that match a cache behavior associated with this response headers policy.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_cloudfront as cloudfront } from 'aws-cdk-lib';
const securityHeadersConfigProperty: cloudfront.CfnResponseHeadersPolicy.SecurityHeadersConfigProperty = {
  contentSecurityPolicy: {
    contentSecurityPolicy: 'contentSecurityPolicy',
    override: false,
  },
  contentTypeOptions: {
    override: false,
  },
  frameOptions: {
    frameOption: 'frameOption',
    override: false,
  },
  referrerPolicy: {
    override: false,
    referrerPolicy: 'referrerPolicy',
  },
  strictTransportSecurity: {
    accessControlMaxAgeSec: 123,
    override: false,

    // the properties below are optional
    includeSubdomains: false,
    preload: false,
  },
  xssProtection: {
    override: false,
    protection: false,

    // the properties below are optional
    modeBlock: false,
    reportUri: 'reportUri',
  },
};

Properties

NameTypeDescription
contentSecurityPolicy?IResolvable | ContentSecurityPolicyPropertyThe policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
contentTypeOptions?IResolvable | ContentTypeOptionsPropertyDetermines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .
frameOptions?IResolvable | FrameOptionsPropertyDetermines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.
referrerPolicy?IResolvable | ReferrerPolicyPropertyDetermines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.
strictTransportSecurity?IResolvable | StrictTransportSecurityPropertyDetermines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.
xssProtection?IResolvable | XSSProtectionPropertyDetermines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

contentSecurityPolicy?

Type: IResolvable | ContentSecurityPolicyProperty (optional)

The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.


contentTypeOptions?

Type: IResolvable | ContentTypeOptionsProperty (optional)

Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.


frameOptions?

Type: IResolvable | FrameOptionsProperty (optional)

Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.


referrerPolicy?

Type: IResolvable | ReferrerPolicyProperty (optional)

Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.


strictTransportSecurity?

Type: IResolvable | StrictTransportSecurityProperty (optional)

Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

For more information about the Strict-Transport-Security HTTP response header, see Strict-Transport-Security in the MDN Web Docs.


xssProtection?

Type: IResolvable | XSSProtectionProperty (optional)

Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.