ExternalVendorCode/tahoe-lafs
1
0
Fork 0
mirror of https://github.com/tahoe-lafs/tahoe-lafs.git synced 2025-01-20 11:38:52 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add "X-Frame-Options: DENY" header to all pages. refs #1455

Browse Source 
Signed-off-by: Daira Hopwood <daira@jacaranda.org>
This commit is contained in:
Daira Hopwood 2015-02-09 02:27:32 +00:00 committed by Jean-Paul Calderone
parent 890360c8ea
commit 718fa4493c
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/allmydata/webish.py
View File

@ -45,6 +45,9 @@ class MyRequest(appserver.NevowRequest):
self.client = self.channel.transport.getPeer()
self.host = self.channel.transport.getHost()
# Adding security headers. These will be sent for *all* HTTP requests.
self.responseHeaders.setRawHeaders("X-Frame-Options", ["DENY"])
# Argument processing.
## The original twisted.web.http.Request.requestReceived code parsed the