interface XSSProtectionProperty
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.Mixins.Preview.AWS.CloudFront.Mixins.CfnResponseHeadersPolicyPropsMixin.XSSProtectionProperty |
 Go | github.com/aws/aws-cdk-go/awscdkmixinspreview/v2/awscloudfront/mixins#CfnResponseHeadersPolicyPropsMixin_XSSProtectionProperty |
 Java | software.amazon.awscdk.mixins.preview.services.cloudfront.mixins.CfnResponseHeadersPolicyPropsMixin.XSSProtectionProperty |
 Python | aws_cdk.mixins_preview.aws_cloudfront.mixins.CfnResponseHeadersPolicyPropsMixin.XSSProtectionProperty |
 TypeScript | @aws-cdk/mixins-preview » aws_cloudfront » mixins » CfnResponseHeadersPolicyPropsMixin » XSSProtectionProperty |
Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.
For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.
Example
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { mixins as cloudfront_mixins } from '@aws-cdk/mixins-preview/aws-cloudfront';
const xSSProtectionProperty: cloudfront_mixins.CfnResponseHeadersPolicyPropsMixin.XSSProtectionProperty = {
modeBlock: false,
override: false,
protection: false,
reportUri: 'reportUri',
};
Properties
| Name | Type | Description |
|---|---|---|
| mode | boolean | IResolvable | A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header. |
| override? | boolean | IResolvable | A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy. |
| protection? | boolean | IResolvable | A Boolean that determines the value of the X-XSS-Protection HTTP response header. |
| report | string | A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header. |
modeBlock?
Type:
boolean | IResolvable
(optional)
A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.
For more information about this directive, see X-XSS-Protection in the MDN Web Docs.
override?
Type:
boolean | IResolvable
(optional)
A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
protection?
Type:
boolean | IResolvable
(optional)
A Boolean that determines the value of the X-XSS-Protection HTTP response header.
When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .
For more information about these settings, see X-XSS-Protection in the MDN Web Docs.
reportUri?
Type:
string
(optional)
A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.
You cannot specify a ReportUri when ModeBlock is true .
For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.