Azure Content Delivery Network
An Azure service that provides global content delivery and acceleration.
317 questions
Setting up security response headers for Azue CDN content
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 87%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
JayVah
6
Reputation points
We are delivering Angular application over Azure CDN(no web server), also there would be lots of images/videos(stored on Blob storage) that our site would be serving. How can I add security headers like X Frame options, X SSS protection, no sniff while serving content from CDN?
Its important for us to serve website with at least these headers ✓ strict-transport-security ✓ x-content-type-options ✓ x-frame-options ✓ x-xss-protection
{count} vote
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 33%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EI%3C/text%3E%3C/svg%3E)
ink 1 Reputation point2020-06-10T01:48:48.447+00:00 I would also like to know the recommended way. The best I can find is "Rules engine" and adding a rule to include headers in all responses. Another solution was to create a proxy function that did a similar thing.
I have not even be able to set these headers under the Properties of the blob because there is not a key for it and it will not save under metadata either. There is a key for content-type.
-
JayVah 6 Reputation points
2020-06-11T16:27:00.707+00:00 I tried to add rule in Standard CDN, but its not adding any response header when I am hitting site
Sign in to comment