Merge pull request #5 from SyncfusionExamples/htmltopdf

htmltopdf

Author: SyncfusionBuild

Controllers/HomeController.cs

@@ -97,6 +97,7 @@ public ActionResult ExportToPDF(URL url)
                 blinkConverterSettings.PdfFooter = AddFooter(blinkConverterSettings.PdfPageSize, url.BlogLink);
 
                 blinkConverterSettings.AdditionalDelay = 20000;
+                blinkConverterSettings.ConversionTimeout = 20000;
 
                 //Assign the Blink converter settings to HTML converter.
                 htmlConverter.ConverterSettings = blinkConverterSettings;

Program.cs

@@ -11,8 +11,28 @@ public static void Main(string[] args)
             // Add services to the container.
             builder.Services.AddControllersWithViews();
 
+            // Configure cookie settings
+            builder.Services.Configure<CookiePolicyOptions>(options =>
+            {
+                options.Secure = CookieSecurePolicy.Always; 
+                options.HttpOnly = Microsoft.AspNetCore.CookiePolicy.HttpOnlyPolicy.Always;
+            });
+            builder.Services.AddAntiforgery(options =>
+            {
+                options.Cookie.SecurePolicy = CookieSecurePolicy.Always; 
+                options.Cookie.HttpOnly = true; 
+                options.Cookie.SameSite = SameSiteMode.Strict; 
+            });
             var app = builder.Build();
 
+            app.Use(async (context, next) =>
+            {
+                context.Response.Headers.Add("X-Content-Type-Options", "nosniff");
+                context.Response.Headers.Add("Content-Security-Policy", "upgrade-insecure-requests; script-src 'self' 'unsafe-inline' 'unsafe-eval'  *.syncfusion.com; style-src 'self' 'unsafe-inline'  *.syncfusion.com; frame-src  *.syncfusion.com; object-src 'none'; base-uri 'none'; default-src 'self'; font-src 'self' *.syncfusion.com; connect-src 'self'  *.syncfusion.com; img-src 'self' *.syncfusion.com; form-action 'self'; frame-ancestors 'self'");
+
+                await next();
+            });
+
             // Configure the HTTP request pipeline.
             if (!app.Environment.IsDevelopment())
             {