freeCodeCamp/curriculum/challenges/chinese/09-information-security/information-security-with-helmetjs/configure-helmet-using-the-parent-helmet-middleware.md

---
id: 587d8249367417b2b2512c40
title: 使用 helmet() 中间件来配置 Helmet
challengeType: 2
forumTopicId: 301575
dashedName: configure-helmet-using-the-parent-helmet-middleware
---

# --description--

请注意，本项目在[这个 Repl.it 项目](https://replit.com/github/freeCodeCamp/boilerplate-infosec)的基础上进行开发。你也可以从 [GitHub](https://github.com/freeCodeCamp/boilerplate-infosec/) 上克隆。

`app.use(helmet())` 将自动包括上面介绍的所有中间件，除了 `noCache()` 和 `contentSecurityPolicy()`，但如果有必要，这些可以被启用。 你也可以使用配置对象，单独禁用或配置任何其他中间件。

**例如：**

```js
app.use(helmet({
  frameguard: {         // configure
    action: 'deny'
  },
  contentSecurityPolicy: {    // enable and configure
    directives: {
      defaultSrc: ["'self'"],
      styleSrc: ['style.com'],
    }
  },
  dnsPrefetchControl: false     // disable
}))
```

为了教学目的和便于测试，我们分别介绍了每个中间件。 使用“父”`helmet()` 中间件很容易在真实项目中实现。

# --hints--

没有测试 - 这是一个描述性的挑战

```js
assert(true);
```

# --solutions--

```js
/**
  Backend challenges don't need solutions, 
  because they would need to be tested against a full working project. 
  Please check our contributing guidelines to learn more.
*/
```
Add languages Russian, Arabic, Chinese, Portuguese (#18305) 2018-10-10 18:03:03 -04:00			`---`
			`id: 587d8249367417b2b2512c40`
chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			`title: 使用 helmet() 中间件来配置 Helmet`
Add languages Russian, Arabic, Chinese, Portuguese (#18305) 2018-10-10 18:03:03 -04:00			`challengeType: 2`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00			`forumTopicId: 301575`
feat(curriculum): restore seed + solution to Chinese (#40683) * feat(tools): add seed/solution restore script * chore(curriculum): remove empty sections' markers * chore(curriculum): add seed + solution to Chinese * chore: remove old formatter * fix: update getChallenges parse translated challenges separately, without reference to the source * chore(curriculum): add dashedName to English * chore(curriculum): add dashedName to Chinese * refactor: remove unused challenge property 'name' * fix: relax dashedName requirement * fix: stray tag Remove stray `pre` tag from challenge file. Signed-off-by: nhcarrigan <nhcarrigan@gmail.com> Co-authored-by: nhcarrigan <nhcarrigan@gmail.com> 2021-01-13 03:31:00 +01:00			`dashedName: configure-helmet-using-the-parent-helmet-middleware`
Add languages Russian, Arabic, Chinese, Portuguese (#18305) 2018-10-10 18:03:03 -04:00			`---`

chore(learn): Applied MDX format to Chinese curriculum files (#40462) 2020-12-16 00:37:30 -07:00			`# --description--`

chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			`请注意，本项目在[这个 Repl.it 项目](https://replit.com/github/freeCodeCamp/boilerplate-infosec)的基础上进行开发。你也可以从 [GitHub](https://github.com/freeCodeCamp/boilerplate-infosec/) 上克隆。`
chore(learn): Applied MDX format to Chinese curriculum files (#40462) 2020-12-16 00:37:30 -07:00
chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			`app.use(helmet())` 将自动包括上面介绍的所有中间件，除了 `noCache()` 和 `contentSecurityPolicy()`，但如果有必要，这些可以被启用。你也可以使用配置对象，单独禁用或配置任何其他中间件。
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00
chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			`例如：`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00
			```js
			`app.use(helmet({`
chore(i8n,learn): processed translations 2021-02-06 04:42:36 +00:00			`frameguard: { // configure`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00			`action: 'deny'`
			`},`
chore(i8n,learn): processed translations 2021-02-06 04:42:36 +00:00			`contentSecurityPolicy: { // enable and configure`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00			`directives: {`
chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			`defaultSrc: ["'self'"],`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00			`styleSrc: ['style.com'],`
			`}`
			`},`
chore(i8n,learn): processed translations 2021-02-06 04:42:36 +00:00			`dnsPrefetchControl: false // disable`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00			`}))`
			```

chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			为了教学目的和便于测试，我们分别介绍了每个中间件。使用“父”`helmet()` 中间件很容易在真实项目中实现。
Add languages Russian, Arabic, Chinese, Portuguese (#18305) 2018-10-10 18:03:03 -04:00
chore(learn): Applied MDX format to Chinese curriculum files (#40462) 2020-12-16 00:37:30 -07:00			`# --hints--`
feat(i18n/Chinese): add translation of Information Security with HelmetJS (2/4) (#39540) 2020-09-17 03:53:22 -07:00
chore(i18n,chn): manually downloaded curriculum (#42858) 2021-07-15 13:04:11 +05:30			`没有测试 - 这是一个描述性的挑战`
Add languages Russian, Arabic, Chinese, Portuguese (#18305) 2018-10-10 18:03:03 -04:00
			```js
chore(learn): Applied MDX format to Chinese curriculum files (#40462) 2020-12-16 00:37:30 -07:00			`assert(true);`
Add languages Russian, Arabic, Chinese, Portuguese (#18305) 2018-10-10 18:03:03 -04:00			```
fix: insert blank line after ``` search and replace ```\n< with ```\n\n< to ensure there's an empty line before closing tags 2020-08-13 17:24:35 +02:00
chore(learn): Applied MDX format to Chinese curriculum files (#40462) 2020-12-16 00:37:30 -07:00			`# --solutions--`

feat(curriculum): restore seed + solution to Chinese (#40683) * feat(tools): add seed/solution restore script * chore(curriculum): remove empty sections' markers * chore(curriculum): add seed + solution to Chinese * chore: remove old formatter * fix: update getChallenges parse translated challenges separately, without reference to the source * chore(curriculum): add dashedName to English * chore(curriculum): add dashedName to Chinese * refactor: remove unused challenge property 'name' * fix: relax dashedName requirement * fix: stray tag Remove stray `pre` tag from challenge file. Signed-off-by: nhcarrigan <nhcarrigan@gmail.com> Co-authored-by: nhcarrigan <nhcarrigan@gmail.com> 2021-01-13 03:31:00 +01:00			```js
			`/**`
			`Backend challenges don't need solutions,`
			`because they would need to be tested against a full working project.`
			`Please check our contributing guidelines to learn more.`
			`*/`
			```