If you build APIs or apps with hapi, you've probably googled some variation of "hapi security headers" and landed on a mix of: server.ext('onPreResponse', ...) snippets that set headers manually blankie for CSP README gists for HSTS, frameguard, referrer-policy, and the rest Silent hope that nothing's been missed Express has Helmet. One app.use(helmet()) and you get a sensible stack of securit
Introducing hapi-aegis: Helmet-style security headers for hapi.js
Matt Rosenlund·Dev.to··1 min read
D
Continue reading on Dev.to
This article was sourced from Dev.to's RSS feed. Visit the original for the complete story.