Explore >> Select a destination
|
You are here 
|
dzone.com | ||
| | | | |
www.moesif.com
|
|
| | | | | An in-depth guide to Cross-Origin Resource Sharing (CORS) for REST APIs, on how CORS works, and common pitfalls especially around security. | |
| | | | |
vanwilgenburg.wordpress.com
|
|
| | | | | On many projects CORS headers are configured incorrectly. Usually by putting some wildcards (*) in the config and things 'work'. In this article I will show how to create tests for the correct headers (using Karate, but it should be applicable to any test framework). Introduction CORS stands for Cross-Origin Resource Sharing. And that's pretty... | |
| | | | |
ionutbalosin.com
|
|
| | | | | [AI summary] The provided text is a comprehensive guide on implementing security measures in Java applications, focusing on authentication, authorization, and various HTTP security headers. It covers topics such as API security, token introspection, JSON Web Key Set (JWKS), Content Security Policy (CSP), Cross-Origin Resource Sharing (CORS), HTTP Strict Transport Security (HSTS), and other security headers like X-XSS-Protection, X-Frame-Options, X-Content-Type-Options, and Referrer-Policy. The guide includes code snippets for configuring these security measures in a Java application and emphasizes the importance of using these headers to mitigate common web vulnerabilities and enhance application security. | |
| | | | |
parsiya.net
|
|
| | | [AI summary] The article explores edge cases of the Same-Origin Policy (SOP) in browser security, including its implications for cross-origin requests, CORS, and vulnerabilities in WebSocket and local web servers. | ||
