This plugin is a toolkit for HTTP Security Header optimization.
The plugin provides in a complete solution for Content Security Policy Management with support for Reporting API and legacy policy conversion based on browser sniffing.
The plugin supports most security headers, including Strict Transport Security (HSTS), Public-Key-Pins (HPKP), X-XSS-Protection and all Cross-Origin Resource Sharing (CORS) related headers (Access-Control-Allow-Origin).
Additional features can be requested on the Github forum.
This plugin is a beta release.
Documentation is available on Github.
WordPress plugin installation
- Upload the
security-header-optimization/directory to the/wp-content/plugins/directory. - Activate the plugin through the ‘Plugins’ menu in WordPress.
- Navigate to the plugin settings page.
- Configure Security Header Optimization settings. Documentation is available on Github.
0.0.10
- Bugfix: uninstaller.
0.0.9
Bugfix: settings link on plugin index.
0.0.8
Core update (see changelog.txt)
0.0.2
Bugfix: error after activating plugin.
0.0.1
Beta release. Please provide feedback on Github forum.
- Installation Instructions
-
WordPress plugin installation
- Upload the
security-header-optimization/directory to the/wp-content/plugins/directory. - Activate the plugin through the ‘Plugins’ menu in WordPress.
- Navigate to the plugin settings page.
- Configure Security Header Optimization settings. Documentation is available on Github.
- Upload the