Table of Contents - secure_headers-3.4.1 Documentation
Pages
Classes and Modules
- ActionController
- ActionController::Base
- Object
- Rails
- SecureHeaders
- SecureHeaders::Configuration
- SecureHeaders::Configuration::IllegalPolicyModificationError
- SecureHeaders::Configuration::NotYetConfiguredError
- SecureHeaders::ContentSecurityPolicy
- SecureHeaders::ContentSecurityPolicyConfigError
- SecureHeaders::Cookie
- SecureHeaders::CookiesConfig
- SecureHeaders::CookiesConfigError
- SecureHeaders::HashHelper
- SecureHeaders::Middleware
- SecureHeaders::PolicyManagement
- SecureHeaders::PolicyManagement::ClassMethods
- SecureHeaders::PublicKeyPins
- SecureHeaders::PublicKeyPinsConfigError
- SecureHeaders::Railtie
- SecureHeaders::ReferrerPolicy
- SecureHeaders::ReferrerPolicyConfigError
- SecureHeaders::STSConfigError
- SecureHeaders::StrictTransportSecurity
- SecureHeaders::ViewHelpers
- SecureHeaders::ViewHelpers::UnexpectedHashedScriptException
- SecureHeaders::XContentTypeOptions
- SecureHeaders::XContentTypeOptionsConfigError
- SecureHeaders::XDOConfigError
- SecureHeaders::XDownloadOptions
- SecureHeaders::XFOConfigError
- SecureHeaders::XFrameOptions
- SecureHeaders::XPCDPConfigError
- SecureHeaders::XPermittedCrossDomainPolicies
- SecureHeaders::XXssProtection
- SecureHeaders::XXssProtectionConfigError
Methods
- ::add_configuration — SecureHeaders::Configuration
- ::add_noop_configuration — SecureHeaders::Configuration
- ::append_content_security_policy_directives — SecureHeaders
- ::config_for — SecureHeaders
- ::configure — SecureHeaders::Configuration
- ::content_security_policy_nonce — SecureHeaders
- ::content_security_policy_script_nonce — SecureHeaders
- ::content_security_policy_style_nonce — SecureHeaders
- ::csp_header_for_ua — SecureHeaders
- ::deep_copy — SecureHeaders::Configuration
- ::deep_copy_if_hash — SecureHeaders::Configuration
- ::default — SecureHeaders::Configuration
- ::get — SecureHeaders::Configuration
- ::header_classes_for — SecureHeaders
- ::header_hash_for — SecureHeaders
- ::included — SecureHeaders::PolicyManagement
- ::make_header — SecureHeaders::PublicKeyPins
- ::make_header — SecureHeaders::ReferrerPolicy
- ::make_header — SecureHeaders::StrictTransportSecurity
- ::make_header — SecureHeaders::XContentTypeOptions
- ::make_header — SecureHeaders::XDownloadOptions
- ::make_header — SecureHeaders::XFrameOptions
- ::make_header — SecureHeaders::XPermittedCrossDomainPolicies
- ::make_header — SecureHeaders::XXssProtection
- ::make_header — SecureHeaders
- ::named_append — SecureHeaders::Configuration
- ::named_appends — SecureHeaders::Configuration
- ::new — SecureHeaders::Configuration
- ::new — SecureHeaders::ContentSecurityPolicy
- ::new — SecureHeaders::Cookie
- ::new — SecureHeaders::PublicKeyPins
- ::new — SecureHeaders::Middleware
- ::new — SecureHeaders::CookiesConfig
- ::opt_out_of_all_protection — SecureHeaders
- ::opt_out_of_header — SecureHeaders
- ::override — SecureHeaders::Configuration
- ::override_content_security_policy_directives — SecureHeaders
- ::override_secure_headers_request_config — SecureHeaders
- ::override_x_frame_options — SecureHeaders
- ::use_cached_headers — SecureHeaders
- ::use_content_security_policy_named_append — SecureHeaders
- ::use_secure_headers_override — SecureHeaders
- ::validate_config! — SecureHeaders::Cookie
- ::validate_config! — SecureHeaders::PublicKeyPins
- ::validate_config! — SecureHeaders::ReferrerPolicy
- ::validate_config! — SecureHeaders::StrictTransportSecurity
- ::validate_config! — SecureHeaders::XContentTypeOptions
- ::validate_config! — SecureHeaders::XDownloadOptions
- ::validate_config! — SecureHeaders::XFrameOptions
- ::validate_config! — SecureHeaders::XPermittedCrossDomainPolicies
- ::validate_config! — SecureHeaders::XXssProtection
- #already_flagged? — SecureHeaders::Cookie
- #append_content_security_policy_directives — SecureHeaders
- #append_nonce — SecureHeaders::ContentSecurityPolicy
- #boolean? — SecureHeaders::PolicyManagement::ClassMethods
- #build_directive — SecureHeaders::ContentSecurityPolicy
- #build_value — SecureHeaders::ContentSecurityPolicy
- #cache_headers! — SecureHeaders::Configuration
- #cache_hpkp_report_host — SecureHeaders::Configuration
- #cached_headers= — SecureHeaders::Configuration
- #call — SecureHeaders::Middleware
- #combine_policies — SecureHeaders::PolicyManagement::ClassMethods
- #conditionally_flag? — SecureHeaders::Cookie
- #content_security_policy_nonce — SecureHeaders::ViewHelpers
- #content_security_policy_script_nonce — SecureHeaders
- #content_security_policy_style_nonce — SecureHeaders
- #cookies= — SecureHeaders::Configuration
- #csp= — SecureHeaders::Configuration
- #current_csp — SecureHeaders::Configuration
- #dedup_source_list — SecureHeaders::ContentSecurityPolicy
- #directives — SecureHeaders::ContentSecurityPolicy
- #dup — SecureHeaders::Configuration
- #ensure_array_of_strings! — SecureHeaders::PolicyManagement::ClassMethods
- #ensure_valid_directive! — SecureHeaders::PolicyManagement::ClassMethods
- #ensure_valid_sources! — SecureHeaders::PolicyManagement::ClassMethods
- #flag_cookie? — SecureHeaders::Cookie
- #flag_cookies! — SecureHeaders::Middleware
- #flag_samesite? — SecureHeaders::Cookie
- #flag_samesite_enforcement? — SecureHeaders::Cookie
- #flag_samesite_lax? — SecureHeaders::Cookie
- #flag_samesite_strict? — SecureHeaders::Cookie
- #generate_csp_headers — SecureHeaders::Configuration
- #hash_source — SecureHeaders::HashHelper
- #hashed_javascript_tag — SecureHeaders::ViewHelpers
- #hashed_style_tag — SecureHeaders::ViewHelpers
- #hashed_tag — SecureHeaders::ViewHelpers
- #hpkp= — SecureHeaders::Configuration
- #hpkp_report_host= — SecureHeaders::Configuration
- #httponly? — SecureHeaders::Cookie
- #idempotent_additions? — SecureHeaders::PolicyManagement::ClassMethods
- #is_boolean? — SecureHeaders::CookiesConfig
- #is_hash? — SecureHeaders::CookiesConfig
- #keep_wildcard_sources — SecureHeaders::ContentSecurityPolicy
- #make_header — SecureHeaders::PolicyManagement::ClassMethods
- #max_age_directive — SecureHeaders::PublicKeyPins
- #merge_policy_additions — SecureHeaders::PolicyManagement::ClassMethods
- #minify_source_list — SecureHeaders::ContentSecurityPolicy
- #name — SecureHeaders::ContentSecurityPolicy
- #name — SecureHeaders::PublicKeyPins
- #nonce_added? — SecureHeaders::PolicyManagement::ClassMethods
- #nonced_javascript_tag — SecureHeaders::ViewHelpers
- #nonced_style_tag — SecureHeaders::ViewHelpers
- #nonced_tag — SecureHeaders::ViewHelpers
- #nonces_supported? — SecureHeaders::ContentSecurityPolicy
- #normalize_child_frame_src — SecureHeaders::ContentSecurityPolicy
- #opt_out — SecureHeaders::Configuration
- #opt_out_of_header — SecureHeaders
- #override_content_security_policy_directives — SecureHeaders
- #override_secure — SecureHeaders::Middleware
- #override_x_frame_options — SecureHeaders
- #parse — SecureHeaders::Cookie
- #parsed_cookie — SecureHeaders::Cookie
- #pin_directives — SecureHeaders::PublicKeyPins
- #populate_fetch_source_with_default! — SecureHeaders::PolicyManagement::ClassMethods
- #populate_nonces! — SecureHeaders::ContentSecurityPolicy
- #rebuild_csp_header_cache! — SecureHeaders::Configuration
- #reject_all_values_if_none! — SecureHeaders::ContentSecurityPolicy
- #report_uri_directive — SecureHeaders::PublicKeyPins
- #samesite? — SecureHeaders::Cookie
- #samesite_cookie — SecureHeaders::Cookie
- #scheme — SecureHeaders::Middleware
- #secure? — SecureHeaders::Cookie
- #secure_cookies= — SecureHeaders::Configuration
- #source_list? — SecureHeaders::PolicyManagement::ClassMethods
- #strip_source_schemes! — SecureHeaders::ContentSecurityPolicy
- #subdomain_directive — SecureHeaders::PublicKeyPins
- #supported_directives — SecureHeaders::ContentSecurityPolicy
- #symbol_to_hyphen_case — SecureHeaders::ContentSecurityPolicy
- #to_s — SecureHeaders::Cookie
- #ua_to_variation — SecureHeaders::PolicyManagement::ClassMethods
- #unexpected_hash_error_message — SecureHeaders::ViewHelpers
- #update_x_frame_options — SecureHeaders::Configuration
- #use_content_security_policy_named_append — SecureHeaders
- #use_secure_headers_override — SecureHeaders
- #validate! — SecureHeaders::CookiesConfig
- #validate_config! — SecureHeaders::Configuration
- #validate_config! — SecureHeaders::CookiesConfig
- #validate_config! — SecureHeaders::PolicyManagement::ClassMethods
- #validate_directive! — SecureHeaders::PolicyManagement::ClassMethods
- #validate_exclusive_use_of_hash_constraints! — SecureHeaders::CookiesConfig
- #validate_exclusive_use_of_samesite_enforcement! — SecureHeaders::CookiesConfig
- #validate_hash_or_boolean! — SecureHeaders::CookiesConfig
- #validate_httponly_config! — SecureHeaders::CookiesConfig
- #validate_samesite_boolean_config! — SecureHeaders::CookiesConfig
- #validate_samesite_config! — SecureHeaders::CookiesConfig
- #validate_samesite_hash_config! — SecureHeaders::CookiesConfig
- #validate_secure_config! — SecureHeaders::CookiesConfig
- #validate_source_expression! — SecureHeaders::PolicyManagement::ClassMethods
- #value — SecureHeaders::ContentSecurityPolicy
- #value — SecureHeaders::PublicKeyPins