yujunjun/strapi
1
0
Fork 0
mirror of https://github.com/strapi/strapi.git synced 2025-07-23 00:51:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
strapi/docs/security/xframe.md
loicsaintroch 9f1a2ce51c Add docs about v2
2016-03-22 18:11:11 +01:00

439 B
Raw Blame History

title
X-Frame

Enables X-Frame-Options headers to help prevent Clickjacking.

Configuration

Configuration:

  • Key: xframe
  • Environment: development
  • Location: ./config/environments/development/security.json
  • Type: string

Example:

{
  "xframe": "SAMEORIGIN"
}

Notes:

  • The string is the value for the header: DENY, SAMEORIGIN or ALLOW-FROM.
  • Set to false to disable X-Frame-Options headers.