1. Packages
  2. AWS Native
  3. API Docs
  4. cloudfront
  5. getResponseHeadersPolicy

We recommend new projects start with resources from the AWS provider.

AWS Native v0.126.0 published on Monday, Sep 30, 2024 by Pulumi

aws-native.cloudfront.getResponseHeadersPolicy

Explore with Pulumi AI

aws-native logo

We recommend new projects start with resources from the AWS provider.

AWS Native v0.126.0 published on Monday, Sep 30, 2024 by Pulumi

    Resource Type definition for AWS::CloudFront::ResponseHeadersPolicy

    Using getResponseHeadersPolicy

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getResponseHeadersPolicy(args: GetResponseHeadersPolicyArgs, opts?: InvokeOptions): Promise<GetResponseHeadersPolicyResult>
    function getResponseHeadersPolicyOutput(args: GetResponseHeadersPolicyOutputArgs, opts?: InvokeOptions): Output<GetResponseHeadersPolicyResult>
    def get_response_headers_policy(id: Optional[str] = None,
                                    opts: Optional[InvokeOptions] = None) -> GetResponseHeadersPolicyResult
    def get_response_headers_policy_output(id: Optional[pulumi.Input[str]] = None,
                                    opts: Optional[InvokeOptions] = None) -> Output[GetResponseHeadersPolicyResult]
    func LookupResponseHeadersPolicy(ctx *Context, args *LookupResponseHeadersPolicyArgs, opts ...InvokeOption) (*LookupResponseHeadersPolicyResult, error)
    func LookupResponseHeadersPolicyOutput(ctx *Context, args *LookupResponseHeadersPolicyOutputArgs, opts ...InvokeOption) LookupResponseHeadersPolicyResultOutput

    > Note: This function is named LookupResponseHeadersPolicy in the Go SDK.

    public static class GetResponseHeadersPolicy 
    {
        public static Task<GetResponseHeadersPolicyResult> InvokeAsync(GetResponseHeadersPolicyArgs args, InvokeOptions? opts = null)
        public static Output<GetResponseHeadersPolicyResult> Invoke(GetResponseHeadersPolicyInvokeArgs args, InvokeOptions? opts = null)
    }
    public static CompletableFuture<GetResponseHeadersPolicyResult> getResponseHeadersPolicy(GetResponseHeadersPolicyArgs args, InvokeOptions options)
    // Output-based functions aren't available in Java yet
    
    fn::invoke:
      function: aws-native:cloudfront:getResponseHeadersPolicy
      arguments:
        # arguments dictionary

    The following arguments are supported:

    Id string
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    Id string
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    id String
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    id string
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    id str
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    id String
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .

    getResponseHeadersPolicy Result

    The following output properties are available:

    Id string
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    LastModifiedTime string
    The date and time when the response headers policy was last modified.
    ResponseHeadersPolicyConfig Pulumi.AwsNative.CloudFront.Outputs.ResponseHeadersPolicyConfig
    A response headers policy configuration.
    Id string
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    LastModifiedTime string
    The date and time when the response headers policy was last modified.
    ResponseHeadersPolicyConfig ResponseHeadersPolicyConfig
    A response headers policy configuration.
    id String
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    lastModifiedTime String
    The date and time when the response headers policy was last modified.
    responseHeadersPolicyConfig ResponseHeadersPolicyConfig
    A response headers policy configuration.
    id string
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    lastModifiedTime string
    The date and time when the response headers policy was last modified.
    responseHeadersPolicyConfig ResponseHeadersPolicyConfig
    A response headers policy configuration.
    id str
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    last_modified_time str
    The date and time when the response headers policy was last modified.
    response_headers_policy_config ResponseHeadersPolicyConfig
    A response headers policy configuration.
    id String
    The unique identifier for the response headers policy. For example: 57f99797-3b20-4e1b-a728-27972a74082a .
    lastModifiedTime String
    The date and time when the response headers policy was last modified.
    responseHeadersPolicyConfig Property Map
    A response headers policy configuration.

    Supporting Types

    ResponseHeadersPolicyAccessControlAllowHeaders

    Items List<string>
    The list of HTTP header names. You can specify * to allow all headers.
    Items []string
    The list of HTTP header names. You can specify * to allow all headers.
    items List<String>
    The list of HTTP header names. You can specify * to allow all headers.
    items string[]
    The list of HTTP header names. You can specify * to allow all headers.
    items Sequence[str]
    The list of HTTP header names. You can specify * to allow all headers.
    items List<String>
    The list of HTTP header names. You can specify * to allow all headers.

    ResponseHeadersPolicyAccessControlAllowMethods

    Items List<string>

    The list of HTTP methods. Valid values are:

    • GET
    • DELETE
    • HEAD
    • OPTIONS
    • PATCH
    • POST
    • PUT
    • ALL

    ALL is a special value that includes all of the listed HTTP methods.

    Items []string

    The list of HTTP methods. Valid values are:

    • GET
    • DELETE
    • HEAD
    • OPTIONS
    • PATCH
    • POST
    • PUT
    • ALL

    ALL is a special value that includes all of the listed HTTP methods.

    items List<String>

    The list of HTTP methods. Valid values are:

    • GET
    • DELETE
    • HEAD
    • OPTIONS
    • PATCH
    • POST
    • PUT
    • ALL

    ALL is a special value that includes all of the listed HTTP methods.

    items string[]

    The list of HTTP methods. Valid values are:

    • GET
    • DELETE
    • HEAD
    • OPTIONS
    • PATCH
    • POST
    • PUT
    • ALL

    ALL is a special value that includes all of the listed HTTP methods.

    items Sequence[str]

    The list of HTTP methods. Valid values are:

    • GET
    • DELETE
    • HEAD
    • OPTIONS
    • PATCH
    • POST
    • PUT
    • ALL

    ALL is a special value that includes all of the listed HTTP methods.

    items List<String>

    The list of HTTP methods. Valid values are:

    • GET
    • DELETE
    • HEAD
    • OPTIONS
    • PATCH
    • POST
    • PUT
    • ALL

    ALL is a special value that includes all of the listed HTTP methods.

    ResponseHeadersPolicyAccessControlAllowOrigins

    Items List<string>
    The list of origins (domain names). You can specify * to allow all origins.
    Items []string
    The list of origins (domain names). You can specify * to allow all origins.
    items List<String>
    The list of origins (domain names). You can specify * to allow all origins.
    items string[]
    The list of origins (domain names). You can specify * to allow all origins.
    items Sequence[str]
    The list of origins (domain names). You can specify * to allow all origins.
    items List<String>
    The list of origins (domain names). You can specify * to allow all origins.

    ResponseHeadersPolicyAccessControlExposeHeaders

    Items List<string>
    The list of HTTP headers. You can specify * to expose all headers.
    Items []string
    The list of HTTP headers. You can specify * to expose all headers.
    items List<String>
    The list of HTTP headers. You can specify * to expose all headers.
    items string[]
    The list of HTTP headers. You can specify * to expose all headers.
    items Sequence[str]
    The list of HTTP headers. You can specify * to expose all headers.
    items List<String>
    The list of HTTP headers. You can specify * to expose all headers.

    ResponseHeadersPolicyConfig

    Name string

    A name to identify the response headers policy.

    The name must be unique for response headers policies in this AWS account .

    Comment string

    A comment to describe the response headers policy.

    The comment cannot be longer than 128 characters.

    CorsConfig Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyCorsConfig
    A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS).
    CustomHeadersConfig Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyCustomHeadersConfig
    A configuration for a set of custom HTTP response headers.
    RemoveHeadersConfig Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyRemoveHeadersConfig
    A configuration for a set of HTTP headers to remove from the HTTP response.
    SecurityHeadersConfig Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicySecurityHeadersConfig
    A configuration for a set of security-related HTTP response headers.
    ServerTimingHeadersConfig Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyServerTimingHeadersConfig
    A configuration for enabling the Server-Timing header in HTTP responses sent from CloudFront.
    Name string

    A name to identify the response headers policy.

    The name must be unique for response headers policies in this AWS account .

    Comment string

    A comment to describe the response headers policy.

    The comment cannot be longer than 128 characters.

    CorsConfig ResponseHeadersPolicyCorsConfig
    A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS).
    CustomHeadersConfig ResponseHeadersPolicyCustomHeadersConfig
    A configuration for a set of custom HTTP response headers.
    RemoveHeadersConfig ResponseHeadersPolicyRemoveHeadersConfig
    A configuration for a set of HTTP headers to remove from the HTTP response.
    SecurityHeadersConfig ResponseHeadersPolicySecurityHeadersConfig
    A configuration for a set of security-related HTTP response headers.
    ServerTimingHeadersConfig ResponseHeadersPolicyServerTimingHeadersConfig
    A configuration for enabling the Server-Timing header in HTTP responses sent from CloudFront.
    name String

    A name to identify the response headers policy.

    The name must be unique for response headers policies in this AWS account .

    comment String

    A comment to describe the response headers policy.

    The comment cannot be longer than 128 characters.

    corsConfig ResponseHeadersPolicyCorsConfig
    A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS).
    customHeadersConfig ResponseHeadersPolicyCustomHeadersConfig
    A configuration for a set of custom HTTP response headers.
    removeHeadersConfig ResponseHeadersPolicyRemoveHeadersConfig
    A configuration for a set of HTTP headers to remove from the HTTP response.
    securityHeadersConfig ResponseHeadersPolicySecurityHeadersConfig
    A configuration for a set of security-related HTTP response headers.
    serverTimingHeadersConfig ResponseHeadersPolicyServerTimingHeadersConfig
    A configuration for enabling the Server-Timing header in HTTP responses sent from CloudFront.
    name string

    A name to identify the response headers policy.

    The name must be unique for response headers policies in this AWS account .

    comment string

    A comment to describe the response headers policy.

    The comment cannot be longer than 128 characters.

    corsConfig ResponseHeadersPolicyCorsConfig
    A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS).
    customHeadersConfig ResponseHeadersPolicyCustomHeadersConfig
    A configuration for a set of custom HTTP response headers.
    removeHeadersConfig ResponseHeadersPolicyRemoveHeadersConfig
    A configuration for a set of HTTP headers to remove from the HTTP response.
    securityHeadersConfig ResponseHeadersPolicySecurityHeadersConfig
    A configuration for a set of security-related HTTP response headers.
    serverTimingHeadersConfig ResponseHeadersPolicyServerTimingHeadersConfig
    A configuration for enabling the Server-Timing header in HTTP responses sent from CloudFront.
    name str

    A name to identify the response headers policy.

    The name must be unique for response headers policies in this AWS account .

    comment str

    A comment to describe the response headers policy.

    The comment cannot be longer than 128 characters.

    cors_config ResponseHeadersPolicyCorsConfig
    A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS).
    custom_headers_config ResponseHeadersPolicyCustomHeadersConfig
    A configuration for a set of custom HTTP response headers.
    remove_headers_config ResponseHeadersPolicyRemoveHeadersConfig
    A configuration for a set of HTTP headers to remove from the HTTP response.
    security_headers_config ResponseHeadersPolicySecurityHeadersConfig
    A configuration for a set of security-related HTTP response headers.
    server_timing_headers_config ResponseHeadersPolicyServerTimingHeadersConfig
    A configuration for enabling the Server-Timing header in HTTP responses sent from CloudFront.
    name String

    A name to identify the response headers policy.

    The name must be unique for response headers policies in this AWS account .

    comment String

    A comment to describe the response headers policy.

    The comment cannot be longer than 128 characters.

    corsConfig Property Map
    A configuration for a set of HTTP response headers that are used for cross-origin resource sharing (CORS).
    customHeadersConfig Property Map
    A configuration for a set of custom HTTP response headers.
    removeHeadersConfig Property Map
    A configuration for a set of HTTP headers to remove from the HTTP response.
    securityHeadersConfig Property Map
    A configuration for a set of security-related HTTP response headers.
    serverTimingHeadersConfig Property Map
    A configuration for enabling the Server-Timing header in HTTP responses sent from CloudFront.

    ResponseHeadersPolicyContentSecurityPolicy

    ContentSecurityPolicy string
    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
    Override bool
    A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    ContentSecurityPolicy string
    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
    Override bool
    A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    contentSecurityPolicy String
    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
    override Boolean
    A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    contentSecurityPolicy string
    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
    override boolean
    A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    content_security_policy str
    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
    override bool
    A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    contentSecurityPolicy String
    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.
    override Boolean
    A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.

    ResponseHeadersPolicyContentTypeOptions

    Override bool
    A Boolean that determines whether CloudFront overrides the X-Content-Type-Options HTTP response header received from the origin with the one specified in this response headers policy.
    Override bool
    A Boolean that determines whether CloudFront overrides the X-Content-Type-Options HTTP response header received from the origin with the one specified in this response headers policy.
    override Boolean
    A Boolean that determines whether CloudFront overrides the X-Content-Type-Options HTTP response header received from the origin with the one specified in this response headers policy.
    override boolean
    A Boolean that determines whether CloudFront overrides the X-Content-Type-Options HTTP response header received from the origin with the one specified in this response headers policy.
    override bool
    A Boolean that determines whether CloudFront overrides the X-Content-Type-Options HTTP response header received from the origin with the one specified in this response headers policy.
    override Boolean
    A Boolean that determines whether CloudFront overrides the X-Content-Type-Options HTTP response header received from the origin with the one specified in this response headers policy.

    ResponseHeadersPolicyCorsConfig

    AccessControlAllowCredentials bool

    A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.

    For more information about the Access-Control-Allow-Credentials HTTP response header, see Access-Control-Allow-Credentials in the MDN Web Docs.

    AccessControlAllowHeaders Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyAccessControlAllowHeaders

    A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.

    For more information about the Access-Control-Allow-Headers HTTP response header, see Access-Control-Allow-Headers in the MDN Web Docs.

    AccessControlAllowMethods Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyAccessControlAllowMethods

    A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.

    For more information about the Access-Control-Allow-Methods HTTP response header, see Access-Control-Allow-Methods in the MDN Web Docs.

    AccessControlAllowOrigins Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyAccessControlAllowOrigins

    A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.

    For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.

    OriginOverride bool
    A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.
    AccessControlExposeHeaders Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyAccessControlExposeHeaders

    A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.

    For more information about the Access-Control-Expose-Headers HTTP response header, see Access-Control-Expose-Headers in the MDN Web Docs.

    AccessControlMaxAgeSec int

    A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.

    For more information about the Access-Control-Max-Age HTTP response header, see Access-Control-Max-Age in the MDN Web Docs.

    AccessControlAllowCredentials bool

    A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.

    For more information about the Access-Control-Allow-Credentials HTTP response header, see Access-Control-Allow-Credentials in the MDN Web Docs.

    AccessControlAllowHeaders ResponseHeadersPolicyAccessControlAllowHeaders

    A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.

    For more information about the Access-Control-Allow-Headers HTTP response header, see Access-Control-Allow-Headers in the MDN Web Docs.

    AccessControlAllowMethods ResponseHeadersPolicyAccessControlAllowMethods

    A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.

    For more information about the Access-Control-Allow-Methods HTTP response header, see Access-Control-Allow-Methods in the MDN Web Docs.

    AccessControlAllowOrigins ResponseHeadersPolicyAccessControlAllowOrigins

    A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.

    For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.

    OriginOverride bool
    A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.
    AccessControlExposeHeaders ResponseHeadersPolicyAccessControlExposeHeaders

    A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.

    For more information about the Access-Control-Expose-Headers HTTP response header, see Access-Control-Expose-Headers in the MDN Web Docs.

    AccessControlMaxAgeSec int

    A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.

    For more information about the Access-Control-Max-Age HTTP response header, see Access-Control-Max-Age in the MDN Web Docs.

    accessControlAllowCredentials Boolean

    A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.

    For more information about the Access-Control-Allow-Credentials HTTP response header, see Access-Control-Allow-Credentials in the MDN Web Docs.

    accessControlAllowHeaders ResponseHeadersPolicyAccessControlAllowHeaders

    A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.

    For more information about the Access-Control-Allow-Headers HTTP response header, see Access-Control-Allow-Headers in the MDN Web Docs.

    accessControlAllowMethods ResponseHeadersPolicyAccessControlAllowMethods

    A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.

    For more information about the Access-Control-Allow-Methods HTTP response header, see Access-Control-Allow-Methods in the MDN Web Docs.

    accessControlAllowOrigins ResponseHeadersPolicyAccessControlAllowOrigins

    A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.

    For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.

    originOverride Boolean
    A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.
    accessControlExposeHeaders ResponseHeadersPolicyAccessControlExposeHeaders

    A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.

    For more information about the Access-Control-Expose-Headers HTTP response header, see Access-Control-Expose-Headers in the MDN Web Docs.

    accessControlMaxAgeSec Integer

    A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.

    For more information about the Access-Control-Max-Age HTTP response header, see Access-Control-Max-Age in the MDN Web Docs.

    accessControlAllowCredentials boolean

    A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.

    For more information about the Access-Control-Allow-Credentials HTTP response header, see Access-Control-Allow-Credentials in the MDN Web Docs.

    accessControlAllowHeaders ResponseHeadersPolicyAccessControlAllowHeaders

    A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.

    For more information about the Access-Control-Allow-Headers HTTP response header, see Access-Control-Allow-Headers in the MDN Web Docs.

    accessControlAllowMethods ResponseHeadersPolicyAccessControlAllowMethods

    A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.

    For more information about the Access-Control-Allow-Methods HTTP response header, see Access-Control-Allow-Methods in the MDN Web Docs.

    accessControlAllowOrigins ResponseHeadersPolicyAccessControlAllowOrigins

    A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.

    For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.

    originOverride boolean
    A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.
    accessControlExposeHeaders ResponseHeadersPolicyAccessControlExposeHeaders

    A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.

    For more information about the Access-Control-Expose-Headers HTTP response header, see Access-Control-Expose-Headers in the MDN Web Docs.

    accessControlMaxAgeSec number

    A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.

    For more information about the Access-Control-Max-Age HTTP response header, see Access-Control-Max-Age in the MDN Web Docs.

    access_control_allow_credentials bool

    A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.

    For more information about the Access-Control-Allow-Credentials HTTP response header, see Access-Control-Allow-Credentials in the MDN Web Docs.

    access_control_allow_headers ResponseHeadersPolicyAccessControlAllowHeaders

    A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.

    For more information about the Access-Control-Allow-Headers HTTP response header, see Access-Control-Allow-Headers in the MDN Web Docs.

    access_control_allow_methods ResponseHeadersPolicyAccessControlAllowMethods

    A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.

    For more information about the Access-Control-Allow-Methods HTTP response header, see Access-Control-Allow-Methods in the MDN Web Docs.

    access_control_allow_origins ResponseHeadersPolicyAccessControlAllowOrigins

    A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.

    For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.

    origin_override bool
    A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.
    access_control_expose_headers ResponseHeadersPolicyAccessControlExposeHeaders

    A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.

    For more information about the Access-Control-Expose-Headers HTTP response header, see Access-Control-Expose-Headers in the MDN Web Docs.

    access_control_max_age_sec int

    A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.

    For more information about the Access-Control-Max-Age HTTP response header, see Access-Control-Max-Age in the MDN Web Docs.

    accessControlAllowCredentials Boolean

    A Boolean that CloudFront uses as the value for the Access-Control-Allow-Credentials HTTP response header.

    For more information about the Access-Control-Allow-Credentials HTTP response header, see Access-Control-Allow-Credentials in the MDN Web Docs.

    accessControlAllowHeaders Property Map

    A list of HTTP header names that CloudFront includes as values for the Access-Control-Allow-Headers HTTP response header.

    For more information about the Access-Control-Allow-Headers HTTP response header, see Access-Control-Allow-Headers in the MDN Web Docs.

    accessControlAllowMethods Property Map

    A list of HTTP methods that CloudFront includes as values for the Access-Control-Allow-Methods HTTP response header.

    For more information about the Access-Control-Allow-Methods HTTP response header, see Access-Control-Allow-Methods in the MDN Web Docs.

    accessControlAllowOrigins Property Map

    A list of origins (domain names) that CloudFront can use as the value for the Access-Control-Allow-Origin HTTP response header.

    For more information about the Access-Control-Allow-Origin HTTP response header, see Access-Control-Allow-Origin in the MDN Web Docs.

    originOverride Boolean
    A Boolean that determines whether CloudFront overrides HTTP response headers received from the origin with the ones specified in this response headers policy.
    accessControlExposeHeaders Property Map

    A list of HTTP headers that CloudFront includes as values for the Access-Control-Expose-Headers HTTP response header.

    For more information about the Access-Control-Expose-Headers HTTP response header, see Access-Control-Expose-Headers in the MDN Web Docs.

    accessControlMaxAgeSec Number

    A number that CloudFront uses as the value for the Access-Control-Max-Age HTTP response header.

    For more information about the Access-Control-Max-Age HTTP response header, see Access-Control-Max-Age in the MDN Web Docs.

    ResponseHeadersPolicyCustomHeader

    Header string
    The HTTP response header name.
    Override bool
    A Boolean that determines whether CloudFront overrides a response header with the same name received from the origin with the header specified here.
    Value string
    The value for the HTTP response header.
    Header string
    The HTTP response header name.
    Override bool
    A Boolean that determines whether CloudFront overrides a response header with the same name received from the origin with the header specified here.
    Value string
    The value for the HTTP response header.
    header String
    The HTTP response header name.
    override Boolean
    A Boolean that determines whether CloudFront overrides a response header with the same name received from the origin with the header specified here.
    value String
    The value for the HTTP response header.
    header string
    The HTTP response header name.
    override boolean
    A Boolean that determines whether CloudFront overrides a response header with the same name received from the origin with the header specified here.
    value string
    The value for the HTTP response header.
    header str
    The HTTP response header name.
    override bool
    A Boolean that determines whether CloudFront overrides a response header with the same name received from the origin with the header specified here.
    value str
    The value for the HTTP response header.
    header String
    The HTTP response header name.
    override Boolean
    A Boolean that determines whether CloudFront overrides a response header with the same name received from the origin with the header specified here.
    value String
    The value for the HTTP response header.

    ResponseHeadersPolicyCustomHeadersConfig

    Items []ResponseHeadersPolicyCustomHeader
    The list of HTTP response headers and their values.
    items List<ResponseHeadersPolicyCustomHeader>
    The list of HTTP response headers and their values.
    items ResponseHeadersPolicyCustomHeader[]
    The list of HTTP response headers and their values.
    items Sequence[ResponseHeadersPolicyCustomHeader]
    The list of HTTP response headers and their values.
    items List<Property Map>
    The list of HTTP response headers and their values.

    ResponseHeadersPolicyFrameOptions

    FrameOption string

    The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN .

    For more information about these values, see X-Frame-Options in the MDN Web Docs.

    Override bool
    A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.
    FrameOption string

    The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN .

    For more information about these values, see X-Frame-Options in the MDN Web Docs.

    Override bool
    A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.
    frameOption String

    The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN .

    For more information about these values, see X-Frame-Options in the MDN Web Docs.

    override Boolean
    A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.
    frameOption string

    The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN .

    For more information about these values, see X-Frame-Options in the MDN Web Docs.

    override boolean
    A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.
    frame_option str

    The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN .

    For more information about these values, see X-Frame-Options in the MDN Web Docs.

    override bool
    A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.
    frameOption String

    The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN .

    For more information about these values, see X-Frame-Options in the MDN Web Docs.

    override Boolean
    A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.

    ResponseHeadersPolicyReferrerPolicy

    Override bool
    A Boolean that determines whether CloudFront overrides the Referrer-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    ReferrerPolicy string

    The value of the Referrer-Policy HTTP response header. Valid values are:

    • no-referrer
    • no-referrer-when-downgrade
    • origin
    • origin-when-cross-origin
    • same-origin
    • strict-origin
    • strict-origin-when-cross-origin
    • unsafe-url

    For more information about these values, see Referrer-Policy in the MDN Web Docs.

    Override bool
    A Boolean that determines whether CloudFront overrides the Referrer-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    ReferrerPolicy string

    The value of the Referrer-Policy HTTP response header. Valid values are:

    • no-referrer
    • no-referrer-when-downgrade
    • origin
    • origin-when-cross-origin
    • same-origin
    • strict-origin
    • strict-origin-when-cross-origin
    • unsafe-url

    For more information about these values, see Referrer-Policy in the MDN Web Docs.

    override Boolean
    A Boolean that determines whether CloudFront overrides the Referrer-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    referrerPolicy String

    The value of the Referrer-Policy HTTP response header. Valid values are:

    • no-referrer
    • no-referrer-when-downgrade
    • origin
    • origin-when-cross-origin
    • same-origin
    • strict-origin
    • strict-origin-when-cross-origin
    • unsafe-url

    For more information about these values, see Referrer-Policy in the MDN Web Docs.

    override boolean
    A Boolean that determines whether CloudFront overrides the Referrer-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    referrerPolicy string

    The value of the Referrer-Policy HTTP response header. Valid values are:

    • no-referrer
    • no-referrer-when-downgrade
    • origin
    • origin-when-cross-origin
    • same-origin
    • strict-origin
    • strict-origin-when-cross-origin
    • unsafe-url

    For more information about these values, see Referrer-Policy in the MDN Web Docs.

    override bool
    A Boolean that determines whether CloudFront overrides the Referrer-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    referrer_policy str

    The value of the Referrer-Policy HTTP response header. Valid values are:

    • no-referrer
    • no-referrer-when-downgrade
    • origin
    • origin-when-cross-origin
    • same-origin
    • strict-origin
    • strict-origin-when-cross-origin
    • unsafe-url

    For more information about these values, see Referrer-Policy in the MDN Web Docs.

    override Boolean
    A Boolean that determines whether CloudFront overrides the Referrer-Policy HTTP response header received from the origin with the one specified in this response headers policy.
    referrerPolicy String

    The value of the Referrer-Policy HTTP response header. Valid values are:

    • no-referrer
    • no-referrer-when-downgrade
    • origin
    • origin-when-cross-origin
    • same-origin
    • strict-origin
    • strict-origin-when-cross-origin
    • unsafe-url

    For more information about these values, see Referrer-Policy in the MDN Web Docs.

    ResponseHeadersPolicyRemoveHeader

    Header string
    The HTTP header name.
    Header string
    The HTTP header name.
    header String
    The HTTP header name.
    header string
    The HTTP header name.
    header str
    The HTTP header name.
    header String
    The HTTP header name.

    ResponseHeadersPolicyRemoveHeadersConfig

    Items []ResponseHeadersPolicyRemoveHeader
    The list of HTTP header names.
    items List<ResponseHeadersPolicyRemoveHeader>
    The list of HTTP header names.
    items ResponseHeadersPolicyRemoveHeader[]
    The list of HTTP header names.
    items List<Property Map>
    The list of HTTP header names.

    ResponseHeadersPolicySecurityHeadersConfig

    ContentSecurityPolicy Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyContentSecurityPolicy

    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

    For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

    ContentTypeOptions Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyContentTypeOptions

    Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

    For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.

    FrameOptions Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyFrameOptions

    Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

    For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

    ReferrerPolicy Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyReferrerPolicy

    Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

    For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.

    StrictTransportSecurity Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyStrictTransportSecurity

    Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

    For more information about the Strict-Transport-Security HTTP response header, see Security headers in the Amazon CloudFront Developer Guide and Strict-Transport-Security in the MDN Web Docs.

    XssProtection Pulumi.AwsNative.CloudFront.Inputs.ResponseHeadersPolicyXssProtection

    Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

    For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.

    ContentSecurityPolicy ResponseHeadersPolicyContentSecurityPolicy

    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

    For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

    ContentTypeOptions ResponseHeadersPolicyContentTypeOptions

    Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

    For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.

    FrameOptions ResponseHeadersPolicyFrameOptions

    Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

    For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

    ReferrerPolicy ResponseHeadersPolicyReferrerPolicy

    Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

    For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.

    StrictTransportSecurity ResponseHeadersPolicyStrictTransportSecurity

    Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

    For more information about the Strict-Transport-Security HTTP response header, see Security headers in the Amazon CloudFront Developer Guide and Strict-Transport-Security in the MDN Web Docs.

    XssProtection ResponseHeadersPolicyXssProtection

    Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

    For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.

    contentSecurityPolicy ResponseHeadersPolicyContentSecurityPolicy

    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

    For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

    contentTypeOptions ResponseHeadersPolicyContentTypeOptions

    Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

    For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.

    frameOptions ResponseHeadersPolicyFrameOptions

    Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

    For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

    referrerPolicy ResponseHeadersPolicyReferrerPolicy

    Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

    For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.

    strictTransportSecurity ResponseHeadersPolicyStrictTransportSecurity

    Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

    For more information about the Strict-Transport-Security HTTP response header, see Security headers in the Amazon CloudFront Developer Guide and Strict-Transport-Security in the MDN Web Docs.

    xssProtection ResponseHeadersPolicyXssProtection

    Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

    For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.

    contentSecurityPolicy ResponseHeadersPolicyContentSecurityPolicy

    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

    For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

    contentTypeOptions ResponseHeadersPolicyContentTypeOptions

    Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

    For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.

    frameOptions ResponseHeadersPolicyFrameOptions

    Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

    For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

    referrerPolicy ResponseHeadersPolicyReferrerPolicy

    Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

    For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.

    strictTransportSecurity ResponseHeadersPolicyStrictTransportSecurity

    Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

    For more information about the Strict-Transport-Security HTTP response header, see Security headers in the Amazon CloudFront Developer Guide and Strict-Transport-Security in the MDN Web Docs.

    xssProtection ResponseHeadersPolicyXssProtection

    Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

    For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.

    content_security_policy ResponseHeadersPolicyContentSecurityPolicy

    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

    For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

    content_type_options ResponseHeadersPolicyContentTypeOptions

    Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

    For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.

    frame_options ResponseHeadersPolicyFrameOptions

    Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

    For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

    referrer_policy ResponseHeadersPolicyReferrerPolicy

    Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

    For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.

    strict_transport_security ResponseHeadersPolicyStrictTransportSecurity

    Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

    For more information about the Strict-Transport-Security HTTP response header, see Security headers in the Amazon CloudFront Developer Guide and Strict-Transport-Security in the MDN Web Docs.

    xss_protection ResponseHeadersPolicyXssProtection

    Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

    For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.

    contentSecurityPolicy Property Map

    The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

    For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

    contentTypeOptions Property Map

    Determines whether CloudFront includes the X-Content-Type-Options HTTP response header with its value set to nosniff .

    For more information about the X-Content-Type-Options HTTP response header, see X-Content-Type-Options in the MDN Web Docs.

    frameOptions Property Map

    Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

    For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

    referrerPolicy Property Map

    Determines whether CloudFront includes the Referrer-Policy HTTP response header and the header's value.

    For more information about the Referrer-Policy HTTP response header, see Referrer-Policy in the MDN Web Docs.

    strictTransportSecurity Property Map

    Determines whether CloudFront includes the Strict-Transport-Security HTTP response header and the header's value.

    For more information about the Strict-Transport-Security HTTP response header, see Security headers in the Amazon CloudFront Developer Guide and Strict-Transport-Security in the MDN Web Docs.

    xssProtection Property Map

    Determines whether CloudFront includes the X-XSS-Protection HTTP response header and the header's value.

    For more information about the X-XSS-Protection HTTP response header, see X-XSS-Protection in the MDN Web Docs.

    ResponseHeadersPolicyServerTimingHeadersConfig

    Enabled bool
    A Boolean that determines whether CloudFront adds the Server-Timing header to HTTP responses that it sends in response to requests that match a cache behavior that's associated with this response headers policy.
    SamplingRate double
    A number 0–100 (inclusive) that specifies the percentage of responses that you want CloudFront to add the Server-Timing header to. When you set the sampling rate to 100, CloudFront adds the Server-Timing header to the HTTP response for every request that matches the cache behavior that this response headers policy is attached to. When you set it to 50, CloudFront adds the header to 50% of the responses for requests that match the cache behavior. You can set the sampling rate to any number 0–100 with up to four decimal places.
    Enabled bool
    A Boolean that determines whether CloudFront adds the Server-Timing header to HTTP responses that it sends in response to requests that match a cache behavior that's associated with this response headers policy.
    SamplingRate float64
    A number 0–100 (inclusive) that specifies the percentage of responses that you want CloudFront to add the Server-Timing header to. When you set the sampling rate to 100, CloudFront adds the Server-Timing header to the HTTP response for every request that matches the cache behavior that this response headers policy is attached to. When you set it to 50, CloudFront adds the header to 50% of the responses for requests that match the cache behavior. You can set the sampling rate to any number 0–100 with up to four decimal places.
    enabled Boolean
    A Boolean that determines whether CloudFront adds the Server-Timing header to HTTP responses that it sends in response to requests that match a cache behavior that's associated with this response headers policy.
    samplingRate Double
    A number 0–100 (inclusive) that specifies the percentage of responses that you want CloudFront to add the Server-Timing header to. When you set the sampling rate to 100, CloudFront adds the Server-Timing header to the HTTP response for every request that matches the cache behavior that this response headers policy is attached to. When you set it to 50, CloudFront adds the header to 50% of the responses for requests that match the cache behavior. You can set the sampling rate to any number 0–100 with up to four decimal places.
    enabled boolean
    A Boolean that determines whether CloudFront adds the Server-Timing header to HTTP responses that it sends in response to requests that match a cache behavior that's associated with this response headers policy.
    samplingRate number
    A number 0–100 (inclusive) that specifies the percentage of responses that you want CloudFront to add the Server-Timing header to. When you set the sampling rate to 100, CloudFront adds the Server-Timing header to the HTTP response for every request that matches the cache behavior that this response headers policy is attached to. When you set it to 50, CloudFront adds the header to 50% of the responses for requests that match the cache behavior. You can set the sampling rate to any number 0–100 with up to four decimal places.
    enabled bool
    A Boolean that determines whether CloudFront adds the Server-Timing header to HTTP responses that it sends in response to requests that match a cache behavior that's associated with this response headers policy.
    sampling_rate float
    A number 0–100 (inclusive) that specifies the percentage of responses that you want CloudFront to add the Server-Timing header to. When you set the sampling rate to 100, CloudFront adds the Server-Timing header to the HTTP response for every request that matches the cache behavior that this response headers policy is attached to. When you set it to 50, CloudFront adds the header to 50% of the responses for requests that match the cache behavior. You can set the sampling rate to any number 0–100 with up to four decimal places.
    enabled Boolean
    A Boolean that determines whether CloudFront adds the Server-Timing header to HTTP responses that it sends in response to requests that match a cache behavior that's associated with this response headers policy.
    samplingRate Number
    A number 0–100 (inclusive) that specifies the percentage of responses that you want CloudFront to add the Server-Timing header to. When you set the sampling rate to 100, CloudFront adds the Server-Timing header to the HTTP response for every request that matches the cache behavior that this response headers policy is attached to. When you set it to 50, CloudFront adds the header to 50% of the responses for requests that match the cache behavior. You can set the sampling rate to any number 0–100 with up to four decimal places.

    ResponseHeadersPolicyStrictTransportSecurity

    AccessControlMaxAgeSec int
    A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
    Override bool
    A Boolean that determines whether CloudFront overrides the Strict-Transport-Security HTTP response header received from the origin with the one specified in this response headers policy.
    IncludeSubdomains bool
    A Boolean that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
    Preload bool
    A Boolean that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
    AccessControlMaxAgeSec int
    A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
    Override bool
    A Boolean that determines whether CloudFront overrides the Strict-Transport-Security HTTP response header received from the origin with the one specified in this response headers policy.
    IncludeSubdomains bool
    A Boolean that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
    Preload bool
    A Boolean that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
    accessControlMaxAgeSec Integer
    A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
    override Boolean
    A Boolean that determines whether CloudFront overrides the Strict-Transport-Security HTTP response header received from the origin with the one specified in this response headers policy.
    includeSubdomains Boolean
    A Boolean that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
    preload Boolean
    A Boolean that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
    accessControlMaxAgeSec number
    A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
    override boolean
    A Boolean that determines whether CloudFront overrides the Strict-Transport-Security HTTP response header received from the origin with the one specified in this response headers policy.
    includeSubdomains boolean
    A Boolean that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
    preload boolean
    A Boolean that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
    access_control_max_age_sec int
    A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
    override bool
    A Boolean that determines whether CloudFront overrides the Strict-Transport-Security HTTP response header received from the origin with the one specified in this response headers policy.
    include_subdomains bool
    A Boolean that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
    preload bool
    A Boolean that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.
    accessControlMaxAgeSec Number
    A number that CloudFront uses as the value for the max-age directive in the Strict-Transport-Security HTTP response header.
    override Boolean
    A Boolean that determines whether CloudFront overrides the Strict-Transport-Security HTTP response header received from the origin with the one specified in this response headers policy.
    includeSubdomains Boolean
    A Boolean that determines whether CloudFront includes the includeSubDomains directive in the Strict-Transport-Security HTTP response header.
    preload Boolean
    A Boolean that determines whether CloudFront includes the preload directive in the Strict-Transport-Security HTTP response header.

    ResponseHeadersPolicyXssProtection

    Override bool
    A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
    Protection bool

    A Boolean that determines the value of the X-XSS-Protection HTTP response header. When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .

    For more information about these settings, see X-XSS-Protection in the MDN Web Docs.

    ModeBlock bool

    A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.

    For more information about this directive, see X-XSS-Protection in the MDN Web Docs.

    ReportUri string

    A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.

    You cannot specify a ReportUri when ModeBlock is true .

    For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.

    Override bool
    A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
    Protection bool

    A Boolean that determines the value of the X-XSS-Protection HTTP response header. When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .

    For more information about these settings, see X-XSS-Protection in the MDN Web Docs.

    ModeBlock bool

    A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.

    For more information about this directive, see X-XSS-Protection in the MDN Web Docs.

    ReportUri string

    A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.

    You cannot specify a ReportUri when ModeBlock is true .

    For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.

    override Boolean
    A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
    protection Boolean

    A Boolean that determines the value of the X-XSS-Protection HTTP response header. When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .

    For more information about these settings, see X-XSS-Protection in the MDN Web Docs.

    modeBlock Boolean

    A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.

    For more information about this directive, see X-XSS-Protection in the MDN Web Docs.

    reportUri String

    A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.

    You cannot specify a ReportUri when ModeBlock is true .

    For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.

    override boolean
    A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
    protection boolean

    A Boolean that determines the value of the X-XSS-Protection HTTP response header. When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .

    For more information about these settings, see X-XSS-Protection in the MDN Web Docs.

    modeBlock boolean

    A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.

    For more information about this directive, see X-XSS-Protection in the MDN Web Docs.

    reportUri string

    A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.

    You cannot specify a ReportUri when ModeBlock is true .

    For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.

    override bool
    A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
    protection bool

    A Boolean that determines the value of the X-XSS-Protection HTTP response header. When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .

    For more information about these settings, see X-XSS-Protection in the MDN Web Docs.

    mode_block bool

    A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.

    For more information about this directive, see X-XSS-Protection in the MDN Web Docs.

    report_uri str

    A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.

    You cannot specify a ReportUri when ModeBlock is true .

    For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.

    override Boolean
    A Boolean that determines whether CloudFront overrides the X-XSS-Protection HTTP response header received from the origin with the one specified in this response headers policy.
    protection Boolean

    A Boolean that determines the value of the X-XSS-Protection HTTP response header. When this setting is true , the value of the X-XSS-Protection header is 1 . When this setting is false , the value of the X-XSS-Protection header is 0 .

    For more information about these settings, see X-XSS-Protection in the MDN Web Docs.

    modeBlock Boolean

    A Boolean that determines whether CloudFront includes the mode=block directive in the X-XSS-Protection header.

    For more information about this directive, see X-XSS-Protection in the MDN Web Docs.

    reportUri String

    A reporting URI, which CloudFront uses as the value of the report directive in the X-XSS-Protection header.

    You cannot specify a ReportUri when ModeBlock is true .

    For more information about using a reporting URL, see X-XSS-Protection in the MDN Web Docs.

    Package Details

    Repository
    AWS Native pulumi/pulumi-aws-native
    License
    Apache-2.0
    aws-native logo

    We recommend new projects start with resources from the AWS provider.

    AWS Native v0.126.0 published on Monday, Sep 30, 2024 by Pulumi