web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

Welcome to the Power Platform Communities
Register Today: Microsoft Business Applications Update- April 15th
Your Invited to Keeping It Real with the Power Platform
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / Vulnerabilities due to...
Power Pages
Unanswered

Vulnerabilities due to missing Headers on Powerapp portal

(1) ShareShare
ReportReport
Posted on by Rony O Microsoft Employee

We built a standard portal on the Accounts entity and ran this site on https://securityheaders.com/

It came back with a rating of C because there were missing headers as below:

Missing Headers
  1. Content-Security-Policy
  2. Referrer-Policy
  3. Feature-Policy
    Content Security Policy is an effective measure to protect your site from XSS attacks. By whitelisting sources of approved content, you can prevent the browser from loading malicious assets.
    Referrer Policy is a new header that allows a site to control how much information the browser includes with navigations away from a document and should be set by all sites.
    Feature Policy is a new header that allows a site to control which features and APIs can be used in the browser.

     

    Has anyone been able to fix these header issues?

     

    The challenge that we have is that the Information Security department within the client would not pass this portal to be deployed without us being able to fix them. Any ideas?

     

    Rony

     

Categories:
Power Apps portals
I have the same question (0)

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Register Today: Microsoft Business Applications Update- April 15th
Your Invited to Keeping It Real with the Power Platform

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Users!

Kudos to our 2025 Community Spotlight Honorees

Congratulations to our 2025 community superstars!

Congratulations to the March Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
rezarizvii Profile Picture

rezarizvii 55

#2
DP_Prabh Profile Picture

DP_Prabh 38

#3
oliver.rodrigues Profile Picture

oliver.rodrigues 30 Most Valuable Professional

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans