This module allows to set HTTP response headers (both standard and non-standard) on pages by various visibility rule settings. Currently the headers can be set by path, content type and user role.
case 1: Set 'Cache-Control' or 'Expires' header to set/reset cache behaviour of browser/cache servers.
case 2: Set 'X-Frame-Options' to restrict your pages rendering on a frame.
case 3: Set 'WWW-Authenticate' to set authentication to pages.
- Configure list of allowed headers
- Exclude non-functional pages (e.g. Admin pages) globally
- Drush extension to cover all functionality
- Page level header rule caching
- Export/import (using Ctool) header rules from an inc file (MODULE.http_response_headers_default_rule.inc) or hook implementation (hook_http_response_headers_default_rule())
- The calculation for certain headers (e.g. Expires) happens internally and end user may not aware of it. So entering 600 in expires header value change to ISO date format of 5 minutes from current time.
- Doesn't work well with Drupal page cache
- Context HTTP Headers: This module allows to set header by context.
Want to help?
- Maintenance status: Actively maintained
- Development status: Under active development
- Module categories: Administration, Performance and Scalability, Utility
- Reported installs: 1,034 sites currently report using this module. View usage statistics.
- Downloads: 5,505
- Automated tests: Enabled
- Last modified: 27 March 2017
- Stable releases for this project are covered by the security advisory policy.
Look for the shield icon below.