{"id":86736,"date":"2021-08-18T13:06:13","date_gmt":"2021-08-18T17:06:13","guid":{"rendered":"https:\/\/www.inmotionhosting.com\/support\/?p=86736"},"modified":"2021-08-20T11:03:10","modified_gmt":"2021-08-20T15:03:10","slug":"joomla-http-headers","status":"publish","type":"post","link":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/","title":{"rendered":"Joomla 4 Security HTTP Headers"},"content":{"rendered":"<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"538\" src=\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-1024x538.jpg\" alt=\"Joomla 4 Security HTTP Headers\" class=\"wp-image-86734\" srcset=\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-1024x538.jpg 1024w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-300x158.jpg 300w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-768x403.jpg 768w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg 1200w\" sizes=\"auto, (min-width: 1360px) 876px, (min-width: 960px) calc(61.58vw + 51px), calc(100vw - 80px)\" \/><\/figure>\n\n\n\n<p>Learning how to secure Joomla 4 is easier than ever before. With the pre-installed HTTP Headers Joomla plugin, you can add up to ten security HTTP headers to protect your data against next-generation cyber attacks.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How to Secure Joomla 4 with HTTP Headers<\/h2>\n\n\n\n<ol class=\"article_list wp-block-list\"><li>Log into your Joomla 4 administrator dashboard (e.g. https:\/\/example.com\/administrator).<\/li><li>Select <strong>System<\/strong> from the sidebar.<\/li><li>Under <em>Manage<\/em>, select <strong>Plugins<\/strong>.<\/li><li>Search for \u201cSystem \u2013 HTTP Headers\u201d and select it.<\/li><\/ol>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"576\" src=\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/joomla-http-headers-1024x576.png\" alt=\"How to secure Joomla with HTTP Headers\" class=\"wp-image-86735\" srcset=\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/joomla-http-headers-1024x576.png 1024w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/joomla-http-headers-300x169.png 300w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/joomla-http-headers-768x432.png 768w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/joomla-http-headers-1536x864.png 1536w, https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/joomla-http-headers.png 1920w\" sizes=\"auto, (min-width: 1360px) 876px, (min-width: 960px) calc(61.58vw + 51px), calc(100vw - 80px)\" \/><\/figure>\n\n\n\n<p><strong>X-Frame-Options<\/strong> specifies whether or how your website can be embedded in another web app or site using iframes. This will harden Joomla against clickjacking. The options for this header are \u201cDENY\u201d and \u201cSAMEORIGIN\u201d (meaning you can embed your website within itself). This is enabled and set to \u201cSAMEORIGIN\u201d<strong> <\/strong>by default.<\/p>\n\n\n\n<p><strong>Referrer-Policy<\/strong> can remove sensitive content from the <code>refererr<\/code> header within URI requests (e.g. password reset URLs). There are nine options in the drop-down menu:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>empty string<\/strong> \u2013 no preference<\/li><li><strong>no-referrer<\/strong> \u2013 no referrer info sent<\/li><li><strong>no-referrer-when-downgrade<\/strong> \u2013 full URL unless visiting HTTP page from HTTPS page (default behavior when no policy specified)<\/li><li><strong>same-origin<\/strong> \u2013 only origin (root domain \u2013 e.g. example.com instead of example.com\/blog) for within the same site<\/li><li><strong>origin<\/strong> \u2013 only origin<\/li><li><strong>strict-origin<\/strong> \u2013 origin only when security level is the same (e.g. HTTPS to HTTPS)<\/li><li><strong>origin-when-cross-origin<\/strong> \u2013 full URL for within the same site, but only origin externally<\/li><li><strong>strict-origin-when-cross-origin<\/strong> \u2013 full URL within site, only origin when protocol security level is the same (e.g. HTTPS to HTTPS), and no info from HTTPS to HTTP<\/li><li><strong>unsafe-url<\/strong> \u2013 full URL (not recommended)<\/li><\/ul>\n\n\n\n<p>This is set to \u201cstrict-origin-when-cross-origin\u201d by default.<\/p>\n\n\n\n<p><strong>Cross-Origin-Opener-Policy (COOP)<\/strong> opens external documents in a separate browsing context group to prevent cross-scripting (XS) attacks.<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>unsafe-none<\/strong> \u2013 no protection unless opener has stronger COOP policy<\/li><li><strong>same-origin-allow-popups<\/strong> \u2013 page keeps references to same-origin popups<\/li><li><strong>same-origin<\/strong> \u2013 cross-origin documents are opened in a separate browsing context<\/li><\/ul>\n\n\n\n<p>This is set to \u201csame-origin\u201d by default.<\/p>\n\n\n\n<p>The <em>Force HTTP Headers<\/em> section allows you to add custom HTTP headers. Most notable among the group is Feature-Policy which blocks unnecessary browser features for user privacy (e.g. camera and WebUSB API). This is now superseded by <strong>Permissions-Policy<\/strong>. For example, this disables the user\u2019s mic and webcam while allowing full screen for within the site and a Jitsi Meet video conference:<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">microphone=(),camera=(),fullscreen=(self \u201chttps:\/\/meet\/jit\/si\u201d)<\/pre>\n\n\n\n<p>This is set to \u201cinterest-cohort=()\u201d by default.<\/p>\n\n\n\n<p>Configure <strong>HTTP Strict Transport Security (HSTS)<\/strong> from a tab at the top. HSTS forces web browsers to only load your website using secure (HTTPS) connection. Enabling Joomla HSTS works with SSL 301 redirects to protect against HTTP downgrade attacks.<\/p>\n\n\n\n<p class=\"alert alert-warning\">You must have a <a href=\"https:\/\/www.inmotionhosting.com\/support\/website\/ssl\/auto-ssl-guide\/\">valid SSL certificate<\/a> on your website while HSTS is enabled. Otherwise, your website will become inaccessible.<\/p>\n\n\n\n<p>Configure <strong>Content Security Policy (CSP)<\/strong> from the third tab at the top. CSP prevents web browsers from loading anything in the site that\u2019s not specified in the header (e.g. external sources such as BootstrapCDN and YouTube videos). Configure Joomla CSP in more detail under the <em>Force HTTP Headers<\/em> section.<\/p>\n\n\n\n<p>Once done with deciding how to secure Joomla, select <strong>Save<\/strong> at the top. You can test your security HTTP headers with online tools such as <a href=\"https:\/\/securityheaders.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/securityheaders.com<\/a>.<\/p>\n\n\n<div class=\"jumbotron\">Discover how InMotion Hosting's virtual private servers can deliver power and performance for your Joomla site with our reliable <a href=\"https:\/\/www.inmotionhosting.com\/joomla-hosting\">Joomla Hosting<\/a> plans.<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Learning how to secure Joomla 4 is easier than ever before. With the pre-installed HTTP Headers Joomla plugin, you can add up to ten security HTTP headers to protect your data against next-generation cyber attacks. How to Secure Joomla 4 with HTTP Headers Log into your Joomla 4 administrator dashboard (e.g. https:\/\/example.com\/administrator). Select System from<a class=\"moretag\" href=\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\"> Read More ><\/a><\/p>\n","protected":false},"author":57014,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4496],"tags":[],"class_list":["post-86736","post","type-post","status-publish","format-standard","hentry","category-joomla-4"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How to Secure Joomla 4 with Security HTTP Headers | InMotion Hosting<\/title>\n<meta name=\"description\" content=\"Learn how to Secure Joomla 4 with security HTTP headers including Content Security Policy (CSP) and HTTP Strict Transport Security (HSTS).\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Secure Joomla 4 with Security HTTP Headers | InMotion Hosting\" \/>\n<meta property=\"og:description\" content=\"Learn how to Secure Joomla 4 with security HTTP headers including Content Security Policy (CSP) and HTTP Strict Transport Security (HSTS).\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\" \/>\n<meta property=\"og:site_name\" content=\"InMotion Hosting Support Center\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/inmotionhosting\/\" \/>\n<meta property=\"article:published_time\" content=\"2021-08-18T17:06:13+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-08-20T15:03:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"InMotion Hosting Contributor\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/InMotionHosting\" \/>\n<meta name=\"twitter:site\" content=\"@InMotionHosting\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"InMotion Hosting Contributor\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\"},\"author\":{\"name\":\"InMotion Hosting Contributor\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/f9a4fc454cd1df128ee8e898d30d4644\"},\"headline\":\"Joomla 4 Security HTTP Headers\",\"datePublished\":\"2021-08-18T17:06:13+00:00\",\"dateModified\":\"2021-08-20T15:03:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\"},\"wordCount\":522,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-1024x538.jpg\",\"articleSection\":[\"Joomla 4\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\",\"name\":\"How to Secure Joomla 4 with Security HTTP Headers | InMotion Hosting\",\"isPartOf\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-1024x538.jpg\",\"datePublished\":\"2021-08-18T17:06:13+00:00\",\"dateModified\":\"2021-08-20T15:03:10+00:00\",\"description\":\"Learn how to Secure Joomla 4 with security HTTP headers including Content Security Policy (CSP) and HTTP Strict Transport Security (HSTS).\",\"breadcrumb\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg\",\"contentUrl\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg\",\"width\":1200,\"height\":630,\"caption\":\"Joomla 4 Security HTTP Headers\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.inmotionhosting.com\/support\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Joomla 4 Security HTTP Headers\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#website\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/\",\"name\":\"InMotion Hosting Support Center\",\"description\":\"Web Hosting Support &amp; Tutorials\",\"publisher\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.inmotionhosting.com\/support\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#organization\",\"name\":\"InMotion Hosting\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg\",\"contentUrl\":\"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg\",\"width\":696,\"height\":696,\"caption\":\"InMotion Hosting\"},\"image\":{\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/inmotionhosting\/\",\"https:\/\/x.com\/InMotionHosting\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/f9a4fc454cd1df128ee8e898d30d4644\",\"name\":\"InMotion Hosting Contributor\",\"description\":\"InMotion Hosting contributors are highly knowledgeable individuals who create relevant content on new trends and troubleshooting techniques to help you achieve your online goals!\",\"sameAs\":[\"https:\/\/www.linkedin.com\/company\/inmotion-hosting\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/InMotionHosting\"],\"url\":\"https:\/\/www.inmotionhosting.com\/support\/author\/inmotion-hosting-contributor\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to Secure Joomla 4 with Security HTTP Headers | InMotion Hosting","description":"Learn how to Secure Joomla 4 with security HTTP headers including Content Security Policy (CSP) and HTTP Strict Transport Security (HSTS).","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/","og_locale":"en_US","og_type":"article","og_title":"How to Secure Joomla 4 with Security HTTP Headers | InMotion Hosting","og_description":"Learn how to Secure Joomla 4 with security HTTP headers including Content Security Policy (CSP) and HTTP Strict Transport Security (HSTS).","og_url":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/","og_site_name":"InMotion Hosting Support Center","article_publisher":"https:\/\/www.facebook.com\/inmotionhosting\/","article_published_time":"2021-08-18T17:06:13+00:00","article_modified_time":"2021-08-20T15:03:10+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg","type":"image\/jpeg"}],"author":"InMotion Hosting Contributor","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/InMotionHosting","twitter_site":"@InMotionHosting","twitter_misc":{"Written by":"InMotion Hosting Contributor","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#article","isPartOf":{"@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/"},"author":{"name":"InMotion Hosting Contributor","@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/f9a4fc454cd1df128ee8e898d30d4644"},"headline":"Joomla 4 Security HTTP Headers","datePublished":"2021-08-18T17:06:13+00:00","dateModified":"2021-08-20T15:03:10+00:00","mainEntityOfPage":{"@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/"},"wordCount":522,"commentCount":0,"publisher":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#organization"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage"},"thumbnailUrl":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-1024x538.jpg","articleSection":["Joomla 4"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/","url":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/","name":"How to Secure Joomla 4 with Security HTTP Headers | InMotion Hosting","isPartOf":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage"},"thumbnailUrl":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers-1024x538.jpg","datePublished":"2021-08-18T17:06:13+00:00","dateModified":"2021-08-20T15:03:10+00:00","description":"Learn how to Secure Joomla 4 with security HTTP headers including Content Security Policy (CSP) and HTTP Strict Transport Security (HSTS).","breadcrumb":{"@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#primaryimage","url":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg","contentUrl":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2021\/08\/canva-joomla-security-http-headers.jpg","width":1200,"height":630,"caption":"Joomla 4 Security HTTP Headers"},{"@type":"BreadcrumbList","@id":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/joomla-http-headers\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.inmotionhosting.com\/support\/"},{"@type":"ListItem","position":2,"name":"Joomla 4 Security HTTP Headers"}]},{"@type":"WebSite","@id":"https:\/\/www.inmotionhosting.com\/support\/#website","url":"https:\/\/www.inmotionhosting.com\/support\/","name":"InMotion Hosting Support Center","description":"Web Hosting Support &amp; Tutorials","publisher":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.inmotionhosting.com\/support\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.inmotionhosting.com\/support\/#organization","name":"InMotion Hosting","url":"https:\/\/www.inmotionhosting.com\/support\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/","url":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg","contentUrl":"https:\/\/www.inmotionhosting.com\/support\/wp-content\/uploads\/2023\/02\/inmotion-hosting-logo-yoast.jpg","width":696,"height":696,"caption":"InMotion Hosting"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/inmotionhosting\/","https:\/\/x.com\/InMotionHosting"]},{"@type":"Person","@id":"https:\/\/www.inmotionhosting.com\/support\/#\/schema\/person\/f9a4fc454cd1df128ee8e898d30d4644","name":"InMotion Hosting Contributor","description":"InMotion Hosting contributors are highly knowledgeable individuals who create relevant content on new trends and troubleshooting techniques to help you achieve your online goals!","sameAs":["https:\/\/www.linkedin.com\/company\/inmotion-hosting\/","https:\/\/x.com\/https:\/\/twitter.com\/InMotionHosting"],"url":"https:\/\/www.inmotionhosting.com\/support\/author\/inmotion-hosting-contributor\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"primary_category":{"id":4496,"name":"Joomla 4","slug":"joomla-4","link":"https:\/\/www.inmotionhosting.com\/support\/edu\/joomla\/joomla-4\/"},"_links":{"self":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts\/86736","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/users\/57014"}],"replies":[{"embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/comments?post=86736"}],"version-history":[{"count":5,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts\/86736\/revisions"}],"predecessor-version":[{"id":86783,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/posts\/86736\/revisions\/86783"}],"wp:attachment":[{"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/media?parent=86736"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/categories?post=86736"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/support\/wp-json\/wp\/v2\/tags?post=86736"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}