getResponseHeadersPolicy

Use this data source to retrieve information about a CloudFront cache policy.

Example Usage

using Pulumi;
using Aws = Pulumi.Aws;

class MyStack : Stack
{
    public MyStack()
    {
        var example = Output.Create(Aws.CloudFront.GetResponseHeadersPolicy.InvokeAsync(new Aws.CloudFront.GetResponseHeadersPolicyArgs
        {
            Name = "example-policy",
        }));
    }

}
package main

import (
	"github.com/pulumi/pulumi-aws/sdk/v4/go/aws/cloudfront"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		opt0 := "example-policy"
		_, err := cloudfront.LookupResponseHeadersPolicy(ctx, &cloudfront.LookupResponseHeadersPolicyArgs{
			Name: &opt0,
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
import pulumi
import pulumi_aws as aws

example = aws.cloudfront.get_response_headers_policy(name="example-policy")
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

const example = pulumi.output(aws.cloudfront.getResponseHeadersPolicy({
    name: "example-policy",
}));

Using getResponseHeadersPolicy

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getResponseHeadersPolicy(args: GetResponseHeadersPolicyArgs, opts?: InvokeOptions): Promise<GetResponseHeadersPolicyResult>
function getResponseHeadersPolicyOutput(args: GetResponseHeadersPolicyOutputArgs, opts?: InvokeOptions): Output<GetResponseHeadersPolicyResult>
def get_response_headers_policy(id: Optional[str] = None,
                                name: Optional[str] = None,
                                opts: Optional[InvokeOptions] = None) -> GetResponseHeadersPolicyResult
def get_response_headers_policy_output(id: Optional[pulumi.Input[str]] = None,
                                name: Optional[pulumi.Input[str]] = None,
                                opts: Optional[InvokeOptions] = None) -> Output[GetResponseHeadersPolicyResult]
func LookupResponseHeadersPolicy(ctx *Context, args *LookupResponseHeadersPolicyArgs, opts ...InvokeOption) (*LookupResponseHeadersPolicyResult, error)
func LookupResponseHeadersPolicyOutput(ctx *Context, args *LookupResponseHeadersPolicyOutputArgs, opts ...InvokeOption) LookupResponseHeadersPolicyResultOutput

> Note: This function is named LookupResponseHeadersPolicy in the Go SDK.

public static class GetResponseHeadersPolicy 
{
    public static Task<GetResponseHeadersPolicyResult> InvokeAsync(GetResponseHeadersPolicyArgs args, InvokeOptions? opts = null)
    public static Output<GetResponseHeadersPolicyResult> Invoke(GetResponseHeadersPolicyInvokeArgs args, InvokeOptions? opts = null)
}

The following arguments are supported:

Id string
The identifier for the response headers policy.
Name string
A unique name to identify the response headers policy.
Id string
The identifier for the response headers policy.
Name string
A unique name to identify the response headers policy.
id string
The identifier for the response headers policy.
name string
A unique name to identify the response headers policy.
id str
The identifier for the response headers policy.
name str
A unique name to identify the response headers policy.

getResponseHeadersPolicy Result

The following output properties are available:

Comment string
A comment to describe the response headers policy. The comment cannot be longer than 128 characters.
CorsConfigs List<GetResponseHeadersPolicyCorsConfig>
A configuration for a set of HTTP response headers that are used for Cross-Origin Resource Sharing (CORS). See Cors Config for more information.
CustomHeadersConfigs List<GetResponseHeadersPolicyCustomHeadersConfig>
Object that contains an attribute items that contains a list of Custom Headers See Custom Header for more information.
Etag string
The current version of the response headers policy.
Id string
Name string
SecurityHeadersConfigs List<GetResponseHeadersPolicySecurityHeadersConfig>
A configuration for a set of security-related HTTP response headers. See Security Headers Config for more information.
Comment string
A comment to describe the response headers policy. The comment cannot be longer than 128 characters.
CorsConfigs []GetResponseHeadersPolicyCorsConfig
A configuration for a set of HTTP response headers that are used for Cross-Origin Resource Sharing (CORS). See Cors Config for more information.
CustomHeadersConfigs []GetResponseHeadersPolicyCustomHeadersConfig
Object that contains an attribute items that contains a list of Custom Headers See Custom Header for more information.
Etag string
The current version of the response headers policy.
Id string
Name string
SecurityHeadersConfigs []GetResponseHeadersPolicySecurityHeadersConfig
A configuration for a set of security-related HTTP response headers. See Security Headers Config for more information.
comment string
A comment to describe the response headers policy. The comment cannot be longer than 128 characters.
corsConfigs GetResponseHeadersPolicyCorsConfig[]
A configuration for a set of HTTP response headers that are used for Cross-Origin Resource Sharing (CORS). See Cors Config for more information.
customHeadersConfigs GetResponseHeadersPolicyCustomHeadersConfig[]
Object that contains an attribute items that contains a list of Custom Headers See Custom Header for more information.
etag string
The current version of the response headers policy.
id string
name string
securityHeadersConfigs GetResponseHeadersPolicySecurityHeadersConfig[]
A configuration for a set of security-related HTTP response headers. See Security Headers Config for more information.
comment str
A comment to describe the response headers policy. The comment cannot be longer than 128 characters.
cors_configs Sequence[GetResponseHeadersPolicyCorsConfig]
A configuration for a set of HTTP response headers that are used for Cross-Origin Resource Sharing (CORS). See Cors Config for more information.
custom_headers_configs Sequence[GetResponseHeadersPolicyCustomHeadersConfig]
Object that contains an attribute items that contains a list of Custom Headers See Custom Header for more information.
etag str
The current version of the response headers policy.
id str
name str
security_headers_configs Sequence[GetResponseHeadersPolicySecurityHeadersConfig]
A configuration for a set of security-related HTTP response headers. See Security Headers Config for more information.

Supporting Types

GetResponseHeadersPolicyCorsConfig

AccessControlAllowCredentials bool
A Boolean value that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.
AccessControlAllowHeaders List<GetResponseHeadersPolicyCorsConfigAccessControlAllowHeader>
Object that contains an attribute items that contains a list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.
AccessControlAllowMethods List<GetResponseHeadersPolicyCorsConfigAccessControlAllowMethod>
Object that contains an attribute items that contains a list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header. Valid values: GET | POST | OPTIONS | PUT | DELETE | HEAD | ALL
AccessControlAllowOrigins List<GetResponseHeadersPolicyCorsConfigAccessControlAllowOrigin>
Object that contains an attribute items that contains a list of origins that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.
AccessControlExposeHeaders List<GetResponseHeadersPolicyCorsConfigAccessControlExposeHeader>
Object that contains an attribute items that contains a list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.
AccessControlMaxAgeSec int
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
OriginOverride bool
AccessControlAllowCredentials bool
A Boolean value that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.
AccessControlAllowHeaders []GetResponseHeadersPolicyCorsConfigAccessControlAllowHeader
Object that contains an attribute items that contains a list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.
AccessControlAllowMethods []GetResponseHeadersPolicyCorsConfigAccessControlAllowMethod
Object that contains an attribute items that contains a list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header. Valid values: GET | POST | OPTIONS | PUT | DELETE | HEAD | ALL
AccessControlAllowOrigins []GetResponseHeadersPolicyCorsConfigAccessControlAllowOrigin
Object that contains an attribute items that contains a list of origins that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.
AccessControlExposeHeaders []GetResponseHeadersPolicyCorsConfigAccessControlExposeHeader
Object that contains an attribute items that contains a list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.
AccessControlMaxAgeSec int
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
OriginOverride bool
accessControlAllowCredentials boolean
A Boolean value that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.
accessControlAllowHeaders GetResponseHeadersPolicyCorsConfigAccessControlAllowHeader[]
Object that contains an attribute items that contains a list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.
accessControlAllowMethods GetResponseHeadersPolicyCorsConfigAccessControlAllowMethod[]
Object that contains an attribute items that contains a list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header. Valid values: GET | POST | OPTIONS | PUT | DELETE | HEAD | ALL
accessControlAllowOrigins GetResponseHeadersPolicyCorsConfigAccessControlAllowOrigin[]
Object that contains an attribute items that contains a list of origins that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.
accessControlExposeHeaders GetResponseHeadersPolicyCorsConfigAccessControlExposeHeader[]
Object that contains an attribute items that contains a list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.
accessControlMaxAgeSec number
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
originOverride boolean
access_control_allow_credentials bool
A Boolean value that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.
access_control_allow_headers Sequence[GetResponseHeadersPolicyCorsConfigAccessControlAllowHeader]
Object that contains an attribute items that contains a list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.
access_control_allow_methods Sequence[GetResponseHeadersPolicyCorsConfigAccessControlAllowMethod]
Object that contains an attribute items that contains a list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header. Valid values: GET | POST | OPTIONS | PUT | DELETE | HEAD | ALL
access_control_allow_origins Sequence[GetResponseHeadersPolicyCorsConfigAccessControlAllowOrigin]
Object that contains an attribute items that contains a list of origins that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.
access_control_expose_headers Sequence[GetResponseHeadersPolicyCorsConfigAccessControlExposeHeader]
Object that contains an attribute items that contains a list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.
access_control_max_age_sec int
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
origin_override bool

GetResponseHeadersPolicyCorsConfigAccessControlAllowHeader

Items List<string>
Items []string
items string[]
items Sequence[str]

GetResponseHeadersPolicyCorsConfigAccessControlAllowMethod

Items List<string>
Items []string
items string[]
items Sequence[str]

GetResponseHeadersPolicyCorsConfigAccessControlAllowOrigin

Items List<string>
Items []string
items string[]
items Sequence[str]

GetResponseHeadersPolicyCorsConfigAccessControlExposeHeader

Items List<string>
Items []string
items string[]
items Sequence[str]

GetResponseHeadersPolicyCustomHeadersConfig

GetResponseHeadersPolicyCustomHeadersConfigItem

Header string
The HTTP response header name.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Value string
The value for the HTTP response header.
Header string
The HTTP response header name.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Value string
The value for the HTTP response header.
header string
The HTTP response header name.
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
value string
The value for the HTTP response header.
header str
The HTTP response header name.
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
value str
The value for the HTTP response header.

GetResponseHeadersPolicySecurityHeadersConfig

ContentSecurityPolicies List<GetResponseHeadersPolicySecurityHeadersConfigContentSecurityPolicy>
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
ContentTypeOptions List<GetResponseHeadersPolicySecurityHeadersConfigContentTypeOption>
A setting that determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff. See Content Type Options for more information.
FrameOptions List<GetResponseHeadersPolicySecurityHeadersConfigFrameOption>
A setting that determines whether CloudFront includes the X-Frame-Options HTTP response header and the header’s value. See Frame Options for more information.
ReferrerPolicies List<GetResponseHeadersPolicySecurityHeadersConfigReferrerPolicy>
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
StrictTransportSecurities List<GetResponseHeadersPolicySecurityHeadersConfigStrictTransportSecurity>
Settings that determine whether CloudFront includes the Strict-Transport-Security HTTP response header and the header’s value. See Strict Transport Security for more information.
XssProtections List<GetResponseHeadersPolicySecurityHeadersConfigXssProtection>
Settings that determine whether CloudFront includes the X-XSS-Protection HTTP response header and the header’s value. See XSS Protection for more information.
ContentSecurityPolicies []GetResponseHeadersPolicySecurityHeadersConfigContentSecurityPolicy
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
ContentTypeOptions []GetResponseHeadersPolicySecurityHeadersConfigContentTypeOption
A setting that determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff. See Content Type Options for more information.
FrameOptions []GetResponseHeadersPolicySecurityHeadersConfigFrameOption
A setting that determines whether CloudFront includes the X-Frame-Options HTTP response header and the header’s value. See Frame Options for more information.
ReferrerPolicies []GetResponseHeadersPolicySecurityHeadersConfigReferrerPolicy
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
StrictTransportSecurities []GetResponseHeadersPolicySecurityHeadersConfigStrictTransportSecurity
Settings that determine whether CloudFront includes the Strict-Transport-Security HTTP response header and the header’s value. See Strict Transport Security for more information.
XssProtections []GetResponseHeadersPolicySecurityHeadersConfigXssProtection
Settings that determine whether CloudFront includes the X-XSS-Protection HTTP response header and the header’s value. See XSS Protection for more information.
contentSecurityPolicies GetResponseHeadersPolicySecurityHeadersConfigContentSecurityPolicy[]
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
contentTypeOptions GetResponseHeadersPolicySecurityHeadersConfigContentTypeOption[]
A setting that determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff. See Content Type Options for more information.
frameOptions GetResponseHeadersPolicySecurityHeadersConfigFrameOption[]
A setting that determines whether CloudFront includes the X-Frame-Options HTTP response header and the header’s value. See Frame Options for more information.
referrerPolicies GetResponseHeadersPolicySecurityHeadersConfigReferrerPolicy[]
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
strictTransportSecurities GetResponseHeadersPolicySecurityHeadersConfigStrictTransportSecurity[]
Settings that determine whether CloudFront includes the Strict-Transport-Security HTTP response header and the header’s value. See Strict Transport Security for more information.
xssProtections GetResponseHeadersPolicySecurityHeadersConfigXssProtection[]
Settings that determine whether CloudFront includes the X-XSS-Protection HTTP response header and the header’s value. See XSS Protection for more information.
content_security_policies Sequence[GetResponseHeadersPolicySecurityHeadersConfigContentSecurityPolicy]
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
content_type_options Sequence[GetResponseHeadersPolicySecurityHeadersConfigContentTypeOption]
A setting that determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff. See Content Type Options for more information.
frame_options Sequence[GetResponseHeadersPolicySecurityHeadersConfigFrameOption]
A setting that determines whether CloudFront includes the X-Frame-Options HTTP response header and the header’s value. See Frame Options for more information.
referrer_policies Sequence[GetResponseHeadersPolicySecurityHeadersConfigReferrerPolicy]
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
strict_transport_securities Sequence[GetResponseHeadersPolicySecurityHeadersConfigStrictTransportSecurity]
Settings that determine whether CloudFront includes the Strict-Transport-Security HTTP response header and the header’s value. See Strict Transport Security for more information.
xss_protections Sequence[GetResponseHeadersPolicySecurityHeadersConfigXssProtection]
Settings that determine whether CloudFront includes the X-XSS-Protection HTTP response header and the header’s value. See XSS Protection for more information.

GetResponseHeadersPolicySecurityHeadersConfigContentSecurityPolicy

ContentSecurityPolicy string
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
ContentSecurityPolicy string
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
contentSecurityPolicy string
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
content_security_policy str
The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.

GetResponseHeadersPolicySecurityHeadersConfigContentTypeOption

Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.

GetResponseHeadersPolicySecurityHeadersConfigFrameOption

FrameOption string
The value of the X-Frame-Options HTTP response header. Valid values: DENY | SAMEORIGIN
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
FrameOption string
The value of the X-Frame-Options HTTP response header. Valid values: DENY | SAMEORIGIN
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
frameOption string
The value of the X-Frame-Options HTTP response header. Valid values: DENY | SAMEORIGIN
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
frame_option str
The value of the X-Frame-Options HTTP response header. Valid values: DENY | SAMEORIGIN
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.

GetResponseHeadersPolicySecurityHeadersConfigReferrerPolicy

Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
ReferrerPolicy string
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
ReferrerPolicy string
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
referrerPolicy string
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
referrer_policy str
The value of the Referrer-Policy HTTP response header. Valid Values: no-referrer | no-referrer-when-downgrade | origin | origin-when-cross-origin | same-origin | strict-origin | strict-origin-when-cross-origin | unsafe-url

GetResponseHeadersPolicySecurityHeadersConfigStrictTransportSecurity

AccessControlMaxAgeSec int
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
IncludeSubdomains bool
A Boolean value that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Preload bool
A Boolean value that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
AccessControlMaxAgeSec int
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
IncludeSubdomains bool
A Boolean value that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Preload bool
A Boolean value that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
accessControlMaxAgeSec number
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
includeSubdomains boolean
A Boolean value that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
preload boolean
A Boolean value that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
access_control_max_age_sec int
A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
include_subdomains bool
A Boolean value that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
preload bool
A Boolean value that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.

GetResponseHeadersPolicySecurityHeadersConfigXssProtection

ModeBlock bool
A Boolean value that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Protection bool
A Boolean value that determines the value of the X-XSS-Protection HTTP response header. When this setting is true, the value of the X-XSS-Protection header is 1. When this setting is false, the value of the X-XSS-Protection header is 0.
ReportUri string
A Boolean value that determines whether CloudFront sets a reporting URI in the X-XSS-Protection header.
ModeBlock bool
A Boolean value that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.
Override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
Protection bool
A Boolean value that determines the value of the X-XSS-Protection HTTP response header. When this setting is true, the value of the X-XSS-Protection header is 1. When this setting is false, the value of the X-XSS-Protection header is 0.
ReportUri string
A Boolean value that determines whether CloudFront sets a reporting URI in the X-XSS-Protection header.
modeBlock boolean
A Boolean value that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.
override boolean
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
protection boolean
A Boolean value that determines the value of the X-XSS-Protection HTTP response header. When this setting is true, the value of the X-XSS-Protection header is 1. When this setting is false, the value of the X-XSS-Protection header is 0.
reportUri string
A Boolean value that determines whether CloudFront sets a reporting URI in the X-XSS-Protection header.
mode_block bool
A Boolean value that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.
override bool
A Boolean value that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
protection bool
A Boolean value that determines the value of the X-XSS-Protection HTTP response header. When this setting is true, the value of the X-XSS-Protection header is 1. When this setting is false, the value of the X-XSS-Protection header is 0.
report_uri str
A Boolean value that determines whether CloudFront sets a reporting URI in the X-XSS-Protection header.

Package Details

Repository
https://github.com/pulumi/pulumi-aws
License
Apache-2.0
Notes
This Pulumi package is based on the aws Terraform Provider.