Rename to explicitly mention REST APIs

Author: detilium

README.md

@@ -1,10 +1,10 @@
 # ByteGuard.SecurityHeaders ![NuGet Version](https://img.shields.io/nuget/v/ByteGuard.SecurityHeaders)
 
-**ByteGuard.SecurityHeaders** is a lightweight security-focused middleware package for adding a baseline set of security response headers to **ASP.NET Core REST APIs**.
+**ByteGuard.SecurityHeaders** is a lightweight security-focused middleware package for adding a baseline set of security response headers to **ASP.NET Core projects**.
 
 It gives you:
 
-- A single `app.UseDefaultSecurityHeaders()` call to apply sane defaults
+- A single `app.UseDefaultApiSecurityHeaders()` call to apply sane defaults
 - OWASP-inspired header values based on the REST Security Cheat Sheet
 - An `Enforce` option to ensure the standard values are applied even if set elsewhere
 
@@ -17,7 +17,7 @@ It gives you:
 - ✅ OWASP-inspired defaults for REST APIs
 - ✅ Non-breaking by default (does not override existing headers)
 - ✅ Optional **enforcement mode** to overwrite existing values
-- ✅ Minimal setup (`UseDefaultSecurityHeaders`)
+- ✅ Minimal setup (`UseDefaultApiSecurityHeaders`)
 
 ## Getting Started
 
@@ -40,7 +40,7 @@ Add the middleware early in your pipeline:
 ```csharp
 var app = builder.Build();
 
-app.UseDefaultSecurityHeaders();
+app.UseDefaultApiSecurityHeaders();
 
 app.MapControllers();
 app.Run();
@@ -51,7 +51,7 @@ app.Run();
 By default, the middleware will not override headers that are already present. If you want to ensure the standard values are always used (even if other middleware/controllers set them), enable enforcement:
 
 ```csharp
-app.UseDefaultSecurityHeaders(options =>
+app.UseDefaultApiSecurityHeaders(options =>
 {
     options.Enforce = true;
 });

src/ByteGuard.SecurityHeaders/Configuration/ApiSecurityHeadersConfiguration.cs

@@ -0,0 +1,17 @@
+namespace ByteGuard.SecurityHeaders;
+
+/// <summary>
+/// Configuration object for API security headers.
+/// </summary>
+public class ApiSecurityHeadersConfiguration
+{
+    /// <summary>
+    /// Enforce default API security headers.
+    /// </summary>
+    /// <remarks>
+    /// If set to <c>true</c> the default API security headers will be enforced, removing any other potential header values.
+    /// Will not affect any headers besides the defined API security headers.
+    /// Defaults to <c>false</c>.
+    /// </remarks>
+    public bool Enforce { get; set; } = false;
+}

src/ByteGuard.SecurityHeaders/Configuration/SecurityHeadersConfiguration.cs

@@ -8,14 +8,14 @@ namespace ByteGuard.SecurityHeaders;
 public static class SecurityHeadersMiddleware
 {
     /// <summary>
-    /// Add default security headers middleware.
+    /// Add default API security headers middleware.
     /// </summary>
     /// <remarks>
     /// Adds a small baseline set of <see href="https://cheatsheetseries.owasp.org/cheatsheets/REST_Security_Cheat_Sheet.html#security-headers">OWASP-inspired</see> security headers suitable for many REST APIs.
     /// </remarks>
     /// <param name="app">Application builder.</param>
-    public static IApplicationBuilder UseDefaultSecurityHeaders(this IApplicationBuilder app) =>
-        app.UseDefaultSecurityHeaders(_ => { });
+    public static IApplicationBuilder UseDefaultApiSecurityHeaders(this IApplicationBuilder app) =>
+        app.UseDefaultApiSecurityHeaders(_ => { });
 
     /// <summary>
     /// Add default security headers middleware.
@@ -25,12 +25,12 @@ public static IApplicationBuilder UseDefaultSecurityHeaders(this IApplicationBui
     /// </remarks>
     /// <param name="app">Application builder.</param>
     /// <param name="configure">Security headers configuration.</param>
-    public static IApplicationBuilder UseDefaultSecurityHeaders(this IApplicationBuilder app, Action<SecurityHeadersConfiguration> configure)
+    public static IApplicationBuilder UseDefaultApiSecurityHeaders(this IApplicationBuilder app, Action<ApiSecurityHeadersConfiguration> configure)
     {
         ArgumentNullException.ThrowIfNull(app);
         ArgumentNullException.ThrowIfNull(configure);
 
-        var config = new SecurityHeadersConfiguration();
+        var config = new ApiSecurityHeadersConfiguration();
         configure(config);
 
         return app.Use(async (context, next) =>