RubyFlow The Ruby and Rails community linklog

×

The Ruby and Rails community linklog

Made a library? Written a blog post? Found a useful tutorial? Share it with the Ruby community here or just enjoy what everyone else has found!

Two posts covering the basics of some security headers

by Toby Osbourn

We’ve been trying to improve the security of some of our Rails apps recently by improving which security headers we’re passing about.

Here is a basic guide to setting your permissions policy in Rails and one for your content security policy

We’ve seen a surprising number of projects without these set, and they can be a security quick win!

Post a comment

You can use basic HTML markup (e.g. <a>) or Markdown.

As you are not logged in, you will be
directed via GitHub to signup or sign in