Disclaimer: This website requires Please enable JavaScript in your browser settings for the best experience.

Dev GuideAPI ReferenceUser Guide
Dev GuideAPI Reference
Dev GuideAPI ReferenceUser GuideGitHubDev CommunityOptimizely AcademySubmit a ticketLog In
Dev Guide
GitHubDev CommunityOptimizely AcademySubmit a ticket

Work with security headers

Describes the security headers settings in Optimizely Configured Commerce

Suggest Edits

If you want to increase the security of your Optimizely Configured Commerce site, you can enable HTTP security headers.

📘

Note

You must have the role of ISC_System or ISC_Implementer to edit these options.

You can find these settings under Administration > Settings > Site Configurations > Security Headers in the Admin Console.

Settings

❗️

Warning

Incorrectly implementing these settings could break your website.

  • Content-Security-Policy – Acts as an added layer of security to prevent cross-site scripting (XSS).

Updated over 1 year ago