treblle / security-headers
A collection of HTTP middleware classes to improve the security headers in your Laravel application.
Installs: 11 401
Dependents: 0
Suggesters: 0
Security: 0
Stars: 91
Watchers: 6
Forks: 7
Open Issues: 3
Requires
- php: ^8.2
Requires (Dev)
- laravel/pint: ^1.10
- orchestra/testbench: ^8.5.2
- pestphp/pest: ^2.6.1
- phpstan/phpstan: ^1.10.15
README
Treblle Security Headers
Integrations
•
Website
•
Docs
•
Blog
•
Twitter
•
Discord
Treblle makes it super easy to understand what’s going on with your APIs and the apps that use them. Just by adding Treblle to your API out of the box you get:
- Real-time API monitoring and logging
- Auto-generated API docs with OAS support
- API analytics
- Quality scoring
- One-click testing
- API management on the go
- and more...
Requirements
- PHP 8.2
Installation
You can install Treblle Security Headers via Composer. Simply run the following command:
composer require treblle/security-headers
Getting started
To start, you need to publish the configuration.
php artisan vendor:publish --provider="Treblle\SecurityHeaders\Providers\PackageServiceProvider" --tag="security-headers"
This is the default content of the config file that will be published at config/headers.php
:
return [ 'remove' => [ 'X-Powered-By', 'x-powered-by', 'Server', 'server', ], 'referrer-policy' => 'no-referrer-when-downgrade', 'strict-transport-security' => 'max-age=31536000; includeSubDomains', 'certificate-transparency' => 'enforce, max-age=30', 'permissions-policy' => 'autoplay=(self), camera=(), encrypted-media=(self), fullscreen=(), geolocation=(self), gyroscope=(self), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=(self), usb=()', 'content-type-options' => 'nosniff', ];
Community 💙
First and foremost: Star and watch this repository to stay up-to-date.
Also, follow our Blog, and on Twitter.
You can chat with the team and other members on Discord and follow our tutorials and other video material at YouTube.
How to contribute
Here are some ways of contributing to making Treblle better:
- Try out Treblle, and let us know ways to make Treblle better for you. Let us know here on Discord.
- Join our Discord and connect with other members to share and learn from.
- Send a pull request to any of our open source repositories on Github. Check the contribution guide on the repo you want to contribute to for more details about how to contribute. We're looking forward to your contribution!
Contributors