Request for Implementation of Nonce-based CSP & Security Headers for WordPress (OpenLiteSpeed) need Web Development
Contact person: Request for Implementation of Nonce-based CSP & Security Headers for WordPress (OpenLiteSpeed)
Phone:Show
Email:Show
Location: Cologne, Germany
Budget: Recommended by industry experts
Time to start: As soon as possible
Project description:
"Hello,
we are looking for an experienced developer or security specialist to implement a strict nonce-based Content-Security-Policy (CSP) and all necessary HTTP security headers for our WordPress website. The system runs on OpenLiteSpeed with Cloudflare DNS (proxy disabled) and LiteSpeed Cache, and it is essential that the configuration is fully customized to our site and does not break any functionality. The task includes integrating nonce handling into all scripts and styles within WordPress, eliminating unsafe inline code, and rolling out the CSP in stages from Report-Only mode to full Enforcement once no violations remain. In addition to the CSP, all important headers such as HSTS, Referrer-Policy, Permissions-Policy, X-Frame-Options and others must be correctly configured at the server level. The final setup must ensure that all features of the website, including consent management, analytics, and third-party widgets, continue to work smoothly. A complete documentation with the final CSP, allowed sources, WordPress code snippets for nonce injection, and explanations for each security header is required as part of the delivery.
The detailed assignment with all technical requirements and acceptance criteria is attached as a Word document. We are expecting a professional solution that provides maximum security with full compatibility, and we kindly ask for your approach, estimated time and cost, and references from similar projects." (client-provided description)
Matched companies (6)

April Innovations

Knowforth Tech

Mobiweb Global Solutions

Crystal Infoway

Conchakra Technologies Pvt Ltd
