/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
HTTP security headers provide extra security for your web applications by restricting the actions that the browser and server allow once your site is running. SAP Ariba solutions add a number of default security headers to all requests to your site. These security headers are added to the site every time a user renders your web application in any standard browser.
The following secruity headers are now enabled as part of this feature:
- Strict-Transport-Security
- X-Content-Type-Options
- Permissions Policy
- Referrer-Policy
After updating the security header, users might notice better security and improved compatibility with different browsers.
However, if user is using the older version, they might face problems with page navigation, loading pages, and displaying content.
Read more...
Environment
Ariba Applications and SAP Business Network
Keywords
Security Header Compatible Browser Versions Navigation issue Page not loading Content Security Policy HTTP Strict Transport Security (HSTS) X-Content Type Options X-Frame Options , KBA , BNS-ARI-PCP-BF , Base Framework , Known Error
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)