git.shiar.nl / minimedit.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ead5bed) | patch
page: disallow frame ancestors to prevent clickjacking
authorMischa POSLAWSKY <perl@shiar.org>
Sat, 16 May 2020 22:17:23 +0000 (00:17 +0200)
committerMischa POSLAWSKY <perl@shiar.org>
Sat, 16 May 2020 22:17:23 +0000 (00:17 +0200)
commit63c023f45bfa532dcc54b292906c150c10331e9e
treec6fe43827f609cea05d06f05058185ac9ba37435tree | snapshot
parentead5bed24e07383fbcf783c3b5c70a755dbc1982commit | diff
page: disallow frame ancestors to prevent clickjacking

Security policy recommended by Dareboost, to stop potential malicious page
embedding.  Support should be decent (enough), so do not bother with an
equivalent X-Frame-Options directive for compatibility.
page.php diff | blob | history
MinimEdit - databaseless cms with only a bit of php