Description
HTTP request and response headers can be added, changed, or removed from nginx mainline configurations. It is useful for administrators controlling security headers, proxy behavior, or application compatibility.
Header changes can weaken security or break clients if applied broadly. Test rules and confirm important headers such as CSP, cookies, and authentication are not removed accidentally.