Test for secure headers

Registered by Charles Neill

We should test for the security properties of some common headers, like Cross-origin Resource Sharing headers, Location headers, etc.

Some examples:
https://www.owasp.org/index.php/List_of_useful_HTTP_headers

Info on CORS wrt OpenStack: http://specs.openstack.org/openstack/openstack-specs/specs/cors-support.html

Blueprint information

Status:
Complete
Approver:
None
Priority:
High
Drafter:
Charles Neill
Direction:
Needs approval
Assignee:
Rahul U Nair
Definition:
Approved
Series goal:
None
Implementation:
Implemented
Milestone target:
None
Started by
Charles Neill
Completed by
Rahul U Nair

Related branches

Sprints

Whiteboard

Gerrit topic: https://review.openstack.org/#q,topic:bp/test-headers,n,z

Addressed by: https://review.openstack.org/317147
    Added CORS Header testcase

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.

Subscribers

No subscribers.