Title: Headit
Author: StampyCode
Published: <strong>Kevardhu 21, 2015</strong>
Last modified: Ebrel 25, 2017

---

Search plugins

![](https://ps.w.org/headit/assets/banner-772x250.png?rev=1313365)

This plugin **hasn’t been tested with the latest 3 major releases of WordPress**.
It may no longer be maintained or supported and may have compatibility issues when
used with more recent versions of WordPress.

![](https://ps.w.org/headit/assets/icon-256x256.png?rev=1313384)

# Headit

 By [StampyCode](https://profiles.wordpress.org/stampycode/)

[Download](https://downloads.wordpress.org/plugin/headit.1.0.3.zip)

 * [Details](https://cor.wordpress.org/plugins/headit/#description)
 * [Reviews](https://cor.wordpress.org/plugins/headit/#reviews)
 *  [Installation](https://cor.wordpress.org/plugins/headit/#installation)
 * [Development](https://cor.wordpress.org/plugins/headit/#developers)

 [Support](https://wordpress.org/support/plugin/headit/)

## Description

This plugin addresses the need for a simple way to add HTTP headers to outbound 
HTTP responses in your site.

These headers can include custom ones specific to your application, or can be security
related. Some you may wish to specify to protect your site may include:

 * Public-Key-Pins
 * Strict-Transport-Security
 * X-Frame-Options
 * X-XSS-Protection
 * X-Content-Type-Options
 * Content-Security-Policy
 * Content-Security-Policy-Report-Only

### Related Links

 * [Troy Hunt – Introducing you to browser security headers on Pluralsight](http://www.troyhunt.com/2015/09/introducing-you-to-browser-security.html)
 * [PluralSight.com – Introduction to Browser Security Headers](https://app.pluralsight.com/library/courses/browser-security-headers)
 * [OWASP – List of useful HTTP headers](https://www.owasp.org/index.php/List_of_useful_HTTP_headers)
 * [Scott Helme – Hardening your HTTP response headers](https://scotthelme.co.uk/hardening-your-http-response-headers/)

## Screenshots

 * [[
 * The plugin should appear in your plugins list when installed. Note the ‘Settings’
   link where you can configure for Headit.
 * [[
 * This is the settings window for Headit.

## Installation

This section describes how to install the plugin and get it working.

 1. Upload the plugin files to the `/wp-content/plugins/headit` directory, or install
    the plugin through the WordPress plugins screen directly
 2. Activate the plugin through the `Plugins` screen in WordPress
 3. Use the Settings->Headit screen to configure the plugin

## FAQ

  Can I set dynamic headers using Headit?

Currently Headit can only be used to add static headers to your site.

  Can I override existing headers?

All headers added using this plugin will not replace existing headers present in
the response.

## Reviews

There are no reviews for this plugin.

## Contributors & Developers

“Headit” is open source software. The following people have contributed to this 
plugin.

Contributors

 *   [ StampyCode ](https://profiles.wordpress.org/stampycode/)

[Translate “Headit” into your language.](https://translate.wordpress.org/projects/wp-plugins/headit)

### Interested in development?

[Browse the code](https://plugins.trac.wordpress.org/browser/headit/), check out
the [SVN repository](https://plugins.svn.wordpress.org/headit/), or subscribe to
the [development log](https://plugins.trac.wordpress.org/log/headit/) by [RSS](https://plugins.trac.wordpress.org/log/headit/?limit=100&mode=stop_on_copy&format=rss).

## Changelog

#### 1.0

 * Able to set custom static response headers

## Meta

 *  Version **1.0.3**
 *  Last updated **9 years ago**
 *  Active installations **10+**
 *  WordPress version ** 4.0 or higher **
 *  Tested up to **4.4.34**
 *  Language
 * [English (US)](https://wordpress.org/plugins/headit/)
 * Tags
 * [csp](https://cor.wordpress.org/plugins/tags/csp/)[csrf](https://cor.wordpress.org/plugins/tags/csrf/)
   [headers](https://cor.wordpress.org/plugins/tags/headers/)[http header](https://cor.wordpress.org/plugins/tags/http-header/)
   [xss](https://cor.wordpress.org/plugins/tags/xss/)
 *  [Advanced View](https://cor.wordpress.org/plugins/headit/advanced/)

## Ratings

No reviews have been submitted yet.

[Add my review](https://wordpress.org/support/plugin/headit/reviews/#new-post)

[See all reviews](https://wordpress.org/support/plugin/headit/reviews/)

## Contributors

 *   [ StampyCode ](https://profiles.wordpress.org/stampycode/)

## Support

Got something to say? Need help?

 [View support forum](https://wordpress.org/support/plugin/headit/)

## Donate

Would you like to support the advancement of this plugin?

 [ Donate to this plugin ](https://stampy.me)