Setting up Content Security Policy in JIRA

Rilwan Ahmed
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
July 18, 2017

We are using JIRA 6.4.8 on Linux 2.6.32-696.1.1.el6.x86_64
Application Server Container: Apache Tomcat/7.0.55.

Is it possible to implement 'Content Security Policy' and Enable X-FRAME-Options header to implement clickjacking protection?

1 answer

0 votes
somethingblue
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
July 19, 2017

Hi Rilwan,

I saw this question asked a couple months ago in a post titled X-Frame-Options or Content-Security-Policy.  The author found the solution on a webpage titled X-Frame-Options – How to Combat Clickjacking.

The page I'm referencing provides good information on X-Frame-Options Directives, Enabling X-Frame-Options Header, and information regarding caveats with X-Frame-Options Browser Support.

Cheers,

Branden

Suggest an answer

Log in or Sign up to answer