Block iframe access to Appwrite console
This commit is contained in:
parent
8c045db070
commit
1593838f89
|
@ -36,7 +36,9 @@ App::init(function ($utopia, $request, $response, $layout) {
|
|||
$response
|
||||
->addHeader('Cache-Control', 'public, max-age='.$time)
|
||||
->addHeader('Expires', \date('D, d M Y H:i:s', \time() + $time).' GMT') // 45 days cache
|
||||
->addHeader('X-UA-Compatible', 'IE=Edge'); // Deny IE browsers from going into quirks mode
|
||||
->addHeader('X-Frame-Options', 'SAMEORIGIN') // Avoid console and homepage from showing in iframes
|
||||
->addHeader('X-UA-Compatible', 'IE=Edge') // Deny IE browsers from going into quirks mode
|
||||
;
|
||||
|
||||
$route = $utopia->match($request);
|
||||
$scope = $route->getLabel('scope', '');
|
||||
|
|
Loading…
Reference in a new issue