Plug-in to ease the setting of TLS headers for HSTS and similar
Author: | Simon Waters (profile at wordpress.org) |
WordPress version required: | 3.8.1 |
WordPress version tested: | 5.1 |
Plugin version: | 1.1 |
Added to WordPress repository: | 10-04-2015 |
Last updated: | 26-02-2019
Warning! This plugin has not been updated in over 2 years. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.
|
Rating, %: | 100 |
Rated by: | 8 |
Plugin URI: | http://waters.me/ |
Total downloads: | 43 324 |
Active installs: | 6 000+ |
Click to start download
|
ChangeLog
1.1
Fix missing close anchor which breaks recent WordPress
1.0
Add support for wp-login.php page
Add support for Expect-CT header
0.9
Removed unnecessary whitespace in HSTS header (thanks Thomas)
Added Referrer-Policy header
Corrected plugins name from “HTTP Headers” to “Security Header” (thanks Jamie)
Removed trailing semi-colon from X-XSS-Protection (it worked but not needed)
0.8
Add headers to admin section of WordPress
Added option to set the X-Frame-Options headers to main site
Added HSTS Preload header (thanks to Jamie)
0.7
Add report-uri
Fix handling of non-numeric blank strings for HPKP max-age
0.6
HPKP support
Check for TLS before emitting HSTS or HPKP headers
0.5
Change h2 for h1 for accessibility per #31650
0.4
License change
Clarify wording for XSS protection in readme
0.3
Prepare for release
0.2
Added Sonarqube file and formatting changes
0.1