Download the PHP package virdiggg/header-ci3 without Composer
On this page you can find all versions of the php package virdiggg/header-ci3. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Informations about the package header-ci3
A Simple HTTP Header for CodeIgniter 3
Is helmetjs/helmet for CodeIgniter 3/PHP.
HOW TO USE
-
Install this library with composer
-
Load this library on your
application/config/config.php
or you can create a controller if you don't want to load this on all of your website. Example isapplication/controller/App.php
- Then CURL your website in cmd
EXPLANATIONS
- Header
X-Powered-By
will always be removed once you load this library. -
This will use all the default HTTP Headers
-
This will modify
Content-Security-Policy
header, a powerful allow-list of what can happen on your page which mitigates many attacks. Be careful when using this as this can break your page if you're using 3rd party library such as FontAwesome. Parameter is an array. -
This will modify
Cross-Origin-Opener-Policy
header, it helps process-isolate your page. Parameter is a string. -
This will modify
Cross-Origin-Resource-Policy
header, it blocks others from loading your resources cross-origin. Parameter is a string. -
This will modify
Cross-Origin-Embedder-Policy
header, it configures embedding cross-origin resources into the document. Parameter is a string. -
This will modify
Origin-Agent-Cluster
header, it changes process isolation to be origin-based. Parameter is a string. -
This will modify
Referrer-Policy
header, it controls the Referer header. Parameter is a string. - This will modify
Strict-Transport-Security
header, it tells browsers to prefer HTTPS. Parameter is a string. - Make sure whether you have CONST ENVIRONMENT or not, if you are not, this will create it's own ENVIRONMENT.
-
If ENVIRONMENT = 'production' (most likely not localhost), it will add this header. Otherwise, no.
-
This will modify
X-Content-Type-Options
header, it help avoids MIME sniffing. Parameter is a string. -
This will modify
X-DNS-Prefetch-Control
header, it controls DNS prefetching. Parameter is a string. -
This will modify
X-Download-Options
header, it forces downloads to be saved (Internet Explorer only). Parameter is a string. -
This will modify
X-Frame-Options
header, a legacy header that mitigates clickjacking attacks. Parameter is a string. -
This will modify
X-Permitted-Cross-Domain-Policies
header, it controls cross-domain behavior for Adobe products, like Acrobat. Parameter is a string. -
This will modify
X-XSS-Protection
header, a legacy header that tries to mitigate XSS attacks, but makes things worse, so we disables it. Parameter is a string. - This will modify
Permissions-Policy
header, it provides mechanisms for web developers to explicitly declare what functionality can and cannot be used on a website. Parameter is a string.