CASE CHG-46946-19-301343:

Two custom headers are added to Aranda Service Management sites for the purpose of correcting known vulnerabilities and strengthen application security. These headers provide greater control over browser behavior and allowed features.

• Referrer-Policy: This header allows the site to control the amount of information that is included in navigation requests outside of the current document. Their settings are critical to protecting user privacy and reducing the risk of security attacks.
• Permissions-Policy: This header allows the site to determine the type of functions and APIs that can be used in the browser. It provides greater control over the browser’s capabilities, preventing potential threats and attacks.