greatbody
/
freeCodeCamp
mirror of https://github.com/freeCodeCamp/freeCodeCamp.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
freeCodeCamp/curriculum/challenges/english/06-information-security-and.../information-security-with-h.../configure-helmet-using-the-...

1.6 KiB
Raw Blame History

id title challengeType
587d8249367417b2b2512c40 Configure Helmet Using the parent helmet() Middleware 2

Description

As a reminder, this project is being built upon the following starter project on Glitch, or cloned from GitHub. app.use(helmet()) will automatically include all the middleware introduced above, except noCache(), and contentSecurityPolicy(), but these can be enabled if necessary. You can also disable or configure any other middleware individually, using a configuration object. // Example app.use(helmet({ frameguard: { // configure action: 'deny' }, contentSecurityPolicy: { // enable and configure directives: { defaultSrc: ["self"], styleSrc: ['style.com'], } }, dnsPrefetchControl: false // disable })) We introduced each middleware separately for teaching purpose, and for ease of testing. Using the parent helmet() middleware is easiest, and cleaner, for a real project.

Instructions

Tests

tests:
  - text: no tests - it's a descriptive challenge
    testString: assert(true)

Challenge Seed

Solution

// solution required