1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 |
- <div class="col-sm-9 col-md-10 col-sm-push-3 col-md-push-2">
- <kc-tabs-realm></kc-tabs-realm>
- <ul class="nav nav-tabs nav-tabs-pf">
- <li class="active"><a href="#/realms/{{realm.realm}}/defense/headers">{{:: 'headers' | translate}}</a></li>
- <li><a href="#/realms/{{realm.realm}}/defense/brute-force">{{:: 'brute-force-detection' | translate}}</a></li>
- </ul>
- <form class="form-horizontal" name="realmForm" novalidate kc-read-only="!access.manageRealm">
- <fieldset class="border-top">
- <div class="form-group">
- <label class="col-md-2 control-label" for="xFrameOptions"><a href="http://tools.ietf.org/html/rfc7034" target="_blank">{{:: 'x-frame-options' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="xFrameOptions" type="text" ng-model="realm.browserSecurityHeaders.xFrameOptions">
- </div>
- <kc-tooltip>{{:: 'x-frame-options-tooltip' | translate}}</kc-tooltip>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label" for="contentSecurityPolicy"><a href="http://www.w3.org/TR/CSP/" target="_blank">{{:: 'content-sec-policy' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="contentSecurityPolicy" type="text" ng-model="realm.browserSecurityHeaders.contentSecurityPolicy">
- </div>
- <kc-tooltip>{{:: 'content-sec-policy-tooltip' | translate}}</kc-tooltip>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label" for="contentSecurityPolicyReportOnly"><a href="http://www.w3.org/TR/CSP/" target="_blank">{{:: 'content-sec-policy-report-only' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="contentSecurityPolicyReportOnly" type="text" ng-model="realm.browserSecurityHeaders.contentSecurityPolicyReportOnly">
- </div>
- <kc-tooltip>{{:: 'content-sec-policy-report-only-tooltip' | translate}}</kc-tooltip>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label" for="xContentTypeOptions"><a href="https://www.owasp.org/index.php/List_of_useful_HTTP_headers" target="_blank">{{:: 'content-type-options' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="xContentTypeOptions" type="text" ng-model="realm.browserSecurityHeaders.xContentTypeOptions">
- </div>
- <kc-tooltip>{{:: 'content-type-options-tooltip' | translate}}</kc-tooltip>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label" for="xContentTypeOptions"><a href="https://developers.google.com/webmasters/control-crawl-index/docs/robots_meta_tag" target="_blank">{{:: 'robots-tag' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="xRobotsTag" type="text" ng-model="realm.browserSecurityHeaders.xRobotsTag">
- </div>
- <kc-tooltip>{{:: 'robots-tag-tooltip' | translate}}</kc-tooltip>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label" for="xXSSProtection"><a href="https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#xxxsp" target="_blank">{{:: 'x-xss-protection' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="xXSSProtection" type="text" ng-model="realm.browserSecurityHeaders.xXSSProtection">
- </div>
- <kc-tooltip>{{:: 'x-xss-protection-tooltip' | translate}}</kc-tooltip>
- </div>
- <div class="form-group">
- <label class="col-md-2 control-label" for="strictTransportSecurity"><a href="https://www.owasp.org/index.php/OWASP_Secure_Headers_Project#hsts" target="_blank">{{:: 'strict-transport-security' | translate}}</a></label>
- <div class="col-sm-6">
- <input class="form-control" id="strictTransportSecurity" type="text" ng-model="realm.browserSecurityHeaders.strictTransportSecurity">
- </div>
- <kc-tooltip>{{:: 'strict-transport-security-tooltip' | translate}}</kc-tooltip>
- </div>
- </fieldset>
- <div class="form-group" data-ng-show="access.manageRealm">
- <div class="col-md-10 col-md-offset-2">
- <button kc-save data-ng-disabled="!changed">{{:: 'save' | translate}}</button>
- <button kc-reset data-ng-disabled="!changed">{{:: 'cancel' | translate}}</button>
- </div>
- </div>
- </form>
- </div>
- <kc-menu></kc-menu>
|