Module ngx_http_rewrite_module| nginx.org
Workers| httpd.apache.org
The HTTP Strict-Transport-Security response header (often abbreviated as HSTS) informs browsers that the site should only be accessed using HTTPS, and that any future attempts to access it using HTTP should automatically be upgraded to HTTPS.| MDN Web Docs
The HTTP X-Frame-Options response header can be used to indicate whether a browser should be allowed to render a page in a ,| MDN Web Docs
OAuth 2.0 public clients utilizing the Authorization Code Grant are susceptible to the authorization code interception attack. This specification describes the attack as well as a technique to mitigate against the threat through the use of Proof Key for Code Exchange (PKCE, pronounced "pixy").| IETF Datatracker
AcceptFilter Directive| httpd.apache.org
OpenID Connect Discovery 1.0 incorporating errata set 2| openid.net
