Home > Security and Tech > Security Settings
Security Settings
The following settings should all be considered when configuring AspDotNetStorefront to be secure:
AdminPwdChangeDays
AdminSessionTimeoutInMinutes BadLoginLockTimeOut ForceSignoutOnOrderCompletion MaxBadLogins NewPwdAllowedChars NumPreviouslyUsedPwds PasswordValidator SecurityCodeRequiredOnStoreLogin SessionTimeoutInMinutes SessionTimeoutLandingPage SessionTimeoutWarning.Enabled StrongPasswordValidator
AlwaysUseHTTPS
GoNonSecureAgain HstsHeader UseSSL
Captcha.AllowedCharactersRegex Captcha.CaseSensitive Captcha.MaxAsciiValue Captcha.NumberOfCharacters ContactUs.UseCaptcha IPAddress.MaxFailedTransactions IPAddress.RefuseRestrictedIPsFromSite SecurityCodeRequiredOnCreateAccount StoreCCInDB Web.Config.EncryptionProvider AddressCCSaltField EncryptIterations HashAlgorithm KeySize NextKeyChange OrdersCCSaltField
ContentSecurityPolicy.Content-Security-Policy
ContentSecurityPolicy.Enabled
ContentSecurityPolicy.X-Content-Security-Policy ContentSecurityPolicy.X-Frame-Options