- This topic has 5 replies, 3 voices, and was last updated 1 year, 7 months ago by David.
January 8, 2021 at 5:17 pm #1611631Melissa
I use GP Premium on my website and am very happy. I have just started hosting with Kinsta and am following their guide on hardening the security of the website.
Unfortunately, when I asked the Kinsta team to add the latest HTTP security headers, it created visual issues with the website. Kinsta said that I would need to speak to my developer to resolve this. We have since switched back to the original without the security headers.
The security headers we attempted to implement were the default:
Can you please let me know what I will need to do to make sure my website still looks good visually with the security headers in place?
MelissaJanuary 8, 2021 at 5:39 pm #1611649LeoStaffCustomer Support
We are using Kinsta as well but haven’t heard of issues like this.
Any chance you can show us what the issue is?
It might be a good idea to start a staging site so your live site still looks good in the mean time.
Let me know 🙂January 8, 2021 at 6:25 pm #1611678Melissa
Thanks, Leo. Interesting. I asked Kinsta to reinstate the security headers, I cleared the cache and restarted the PHP… and now the issue is miraculously fixed. No visual error now.
Maybe it just needed time to work?
In any case, thank you very much for your prompt answer and help.January 8, 2021 at 6:39 pm #1611683LeoStaffCustomer SupportJanuary 8, 2021 at 11:08 pm #1611752Melissa
Apologies, there is another issue that has occured due to setting up HTTP security headers.
For some strange reason, when the HTTP security headers are enabled (in particular, the HTTP Content-Security-Policy response header), I am unable to edit the page in the WordPress backend.
Do you know of a way to fix this issue?January 9, 2021 at 5:38 am #1612001DavidStaffCustomer Support
GP has no control over the editors behaviour, its a core WP Function, in this instance Kinsta should be able to provide some guidance on the correct Content Security Policies as its not theme or plugin related. Give Kinsta another nudge and see what they say 🙂
- You must be logged in to reply to this topic.