Requesting Front Door be supporting OWASP secure headers (https://www.owasp.org/index.php/OWASPSecureHeaders_Project#tab=Headers)?
Currently, our POC website using Azure FrontDoor fails many OWASP header tests, especially when Front Door would claim to protect against few OWASP attacks.
Appreciate that these be on the FrontDoor roadmap in very near future.
OWASP HTTP Secure Headers
HTTP Strict Transport Security (HSTS)
Public Key Pinning Extension for HTTP (HPKP)
- Don't see your idea?