You're reading from Joomla! 4 Masterclass A practitioner's guide to building rich and modern websites using the brand-new features of Joomla 4

Product type Paperback

Published in Jan 2023

Publisher Packt

ISBN-13 9781803238975

Length 338 pages

Edition 1st Edition

Tools

Joomla

Concepts

CMS

Author (1):

Luca Marzo

View More author details

Table of Contents (26) Chapters

Preface

1. Part 1 – Joomla! Out of the Box

2. Chapter 1: A Powerful and Extensible Core FREE CHAPTER

3. Chapter 2: How to Manage Content

4. Chapter 3: Advanced Content Management

5. Chapter 4: Exploring the Flexibility of Modules

6. Chapter 5: Building Your Site Structure: the Menu System

7. Chapter 6: Managing Users and Their Permissions

8. Part 2: Advanced Features

9. Chapter 7: SEO at Its Best

10. Chapter 8: One Site, Multiple Languages

11. Chapter 9: Planning Operations with Scheduled Tasks

12. Chapter 10: Tailored Communication with Mail Templates

13. Chapter 11: Command-Line Interface

14. Part 3: Styling and Securing Your Website

15. Chapter 12: Styling Your Website – Templates

16. Chapter 13: Customize Everything with Overrides

17. Chapter 14: Child Templates

18. Chapter 15: Template Frameworks

19. Chapter 16: Advanced Features – Access and Security

20. Part 4: Case Studies

21. Chapter 17: Case Study – A Corporate Website in Joomla

22. Chapter 18: Case Study – Online Academy with Joomla

23. Chapter 19: Case Study – A B&B Booking System with Joomla

24. Index

Why subscribe?

25. Other Books You May Enjoy

Increasing your website security with HTTP headers

In this section, we’ll explore an integrated feature that allows you to increase the security of your website, thereby controlling the HTTP headers that are provided as a response from your server. Well-configured HTTP headers are useful for preventing and reducing the risk of certain types of attacks, such as Cross-Site Scripting (XSS) and data injection attacks.

Joomla offers a system plugin that allows you to define HTTP headers to configure a Content Security Policy (CSP) and HTTP Strict Transfer Security (HSTS).

You can act on these advanced settings from the dedicated plugin, called System - HTTP Headers, which you can find by going to System Dashboard | Plugins, filtering by Type, and selecting System.

The plugin offers several options, as displayed in Figure 16.13: