Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type Config ¶
type Config struct {
Enabled bool `env:"SECURE_ENABLED"`
XSSProtection string `env:"SECURE_HEADER_XSS" envDefault:"1; mode=block"`
ContentTypeNosniff string `env:"SECURE_HEADER_NO_SNIFF" envDefault:"nosniff"`
XFrameOptions string `env:"SECURE_HEADER_XFRAME" envDefault:"SAMEORIGIN"`
HSTSMaxAge int `env:"SECURE_HEADER_MAX_AGE" envDefault:"3600"`
ContentSecurityPolicy string `env:"SECURE_HEADER_CSP" envDefault:"default-src 'self'"`
AllowHeaders []string `env:"SECURE_CORS_ALLOW_HEADERS"`
AllowMethods []string `env:"SECURE_CORS_ALLOW_METHODS"`
AllowOrigins []string `env:"SECURE_CORS_ALLOW_ORIGINS" envDefault:"*"`
AllowCredentials bool `env:"SECURE_CORS_ALLOW_CREDENTIALS"`
RateLimit float64 `env:"SECURE_RATE_LIMIT" envDefault:"10"`
Burst int `env:"SECURE_RATE_BURST" envDefault:"30"`
ExpiresIn time.Duration `env:"SECURE_RATE_EXPIRES_IN" envDefault:"3m"`
TokenLength uint8 `env:"SECURE_CSRF_TOKEN_LENGTH" envDefault:"32"`
TokenLookup string `env:"SECURE_CSRF_TOKEN_HEADER" envDefault:"X-CSRF-Token"`
CookieName string `env:"SECURE_CSRF_COOKIE_NAME" envDefault:"_csrf"`
CookieMaxAge int `env:"SECURE_CSRF_COOKIE_MAX_AGE" envDefault:"86400"`
CookieSecure bool `env:"SECURE_CSRF_COOKIE_SECURE"`
}
Click to show internal directories.
Click to hide internal directories.