Blockade

Blockade ⚓️ is a lightweight package that adds optional security headers and cookie attributes for Node.js web frameworks.

Security HTTP headers and cookie attributes help enhance the security of your web application by enabling built-in browser security mechanisms.

Supported Node.js web frameworks:

AdonisJs, Express, Fastify, hapi, Koa, Meteor, Nest, Polka, restify, Sails, Total.js

Install

$ npm i blockade

After installing Blockade:

const blockade = require("blockade");

const secureHeaders = new blockade.SecureHeaders();
const secureCookie = new blockade.SecureCookie();

Documentation

Contents:

• Secure Headers
  • Server
  • Strict-Transport-Security (HSTS)
  • X-Frame-Options (XFO)
  • X-XSS-Protection
  • X-Content-Type-Options
  • Content-Security-Policy (CSP)
  • Referrer-Policy
  • Cache-control / Pragma / Expires
  • Feature-Policy
  • Additional information
  • Usage
  • Options
• Secure Cookies
  • Path
  • Secure
  • HttpOnly
  • SameSite
  • Expires
  • Usage
  • Options
• Policy Builder
  • CSP()
  • HSTS()
  • XXP()
  • XFO()
  • Referrer()
  • Feature()
  • Cache()
  • seconds
  • values
  • Usage
• Supported Frameworks
  • Framework Agnostic
  • AdonisJs
  • Express
  • Fastify
  • hapi
  • Koa
  • Meteor
  • Nest
  • Polka
  • restify
  • Sails
  • Total.js
• Resources
  • Frameworks
  • General
  • Policies

Indices and tables

• Index
• Module Index
• Search Page