Walter.Web.FireWall
AddXssProtectionBlockAndReport Method (ISecurityHeadersBuilder)
Walter.Web.FireWall Assembly > Walter.Web.FireWall.Headers Namespace > ISecurityHeadersBuilder Interface : AddXssProtectionBlockAndReport Method
The report URL in a W3C valid format and can be read by the firewall. Leave blank for CSP endpoint in Configuration.WebService
Add X-XSS-Protection 1;mode=block; report={url} to all requests and will tell the browser to block the request. A partially supported directive that tells the user-agent to report potential XSS attacks to a single URL. Data will be POST'd to the report URL in JSON format.
Syntax
ISecurityHeadersBuilder AddXssProtectionBlockAndReport( 
   string reportUrl
)

Parameters

reportUrl
The report URL in a W3C valid format and can be read by the firewall. Leave blank for CSP endpoint in Configuration.WebService

Return Value

SecurityHeadersBuilder.
Requirements

Target Platforms: Windows 7, Windows Vista SP1 or later, Windows XP SP3, Windows Server 2008 (Server Core not supported), Windows Server 2008 R2 (Server Core supported with SP1 or later), Windows Server 2003 SP2

See Also

Reference

ISecurityHeadersBuilder Interface
ISecurityHeadersBuilder Members

Send Feedback