Other HTTP headers, such as
Content-Security-Policy,
Referrer-Policy, and
Public-Key-Pins (HTTP Public Key Pinning / HPKP), do not have built-in commands to configure. They can be added as custom headers in the
Spotfire Server configuration by using the following steps.
Procedure
-
Export the configuration to an XML file.
-
Open the configuration XML file in a text editor, and then add the following tag with content.
<security>
...
<headers>
<directives>
<directive>
<action>add</action>
<enabled>true</enabled>
<name>headername</name>
<value>value</value>
</directive>
</directives>
<properties />
</headers>
-
Replace
headername with the name of the HTTP header and
value with the header value, and, if needed, replace
add with another action type.
The allowed values for
<action> are:
-
Issue
config import-config --comment "HTTP header
<action>" ( with
<action> reflecting the appropriate action type).
-
Restart the server.