Skip to Content
2
Aug 03, 2020 at 10:31 AM

How to add custom header to HTTP Response of SAP Neo HTML5 Application?

514 Views Last edit Aug 03, 2020 at 10:33 AM 3 rev

We have deployed a custom Angular application to SAP Cloud Platform NeoEnvironment, using HTML5 applications deployment option. During a security review of the application, our security team raised a few issues regarding headers received in response. When a request is performed to the application, we can see following response headers(as in attachment):

We would like to add custom response headers, such as:

X-Frame-Options: deny

X-Content-Type-Options: nosniff

Are there any options available to add custom headers via server configuration?

Attachments

in5es.png (13.9 kB)