5Eyl
Which security Headers for HTTPS?
I implement a server application in .NET. I just want to know which security headers I need to set if I use HTTPS. I know about the HttpOnly and SameSite Cookies. OWASP has a recommendation HTTP Headers Cheat Sheet but do I need every single one? Is there something like a standard? Which are the most important?
