How to enable org.apache.catalina.filters.HttpHeaderSecurityFilter to Tomcat ?

Solution Verified - Updated -

Issue

  • How to set X-Frame-Options, X-Content-Type-Options and X-XSS-Protection security headers to Tomcat using the org.apache.catalina.filters.HttpHeaderSecurityFilter filter?

Environment

  • Red Hat Enterprise Linux (RHEL) 7
  • Tomcat 7.0.76

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In