jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Remove X-Frame-Options

Browse Source 
This option is now obsolete in the standards and browsers are complaining.
This needs to move to be a CSP header but this is hard to do from outside
the app (since it has to be 'merged' with the app's existing CSP).

fixes #596
This commit is contained in:
Girish Ramakrishnan
2019-05-20 10:08:53 -07:00
parent 3fe539436b
commit 9d2f81d6b9
6 changed files with 8 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/test/database-test.js
View File

@@ -412,7 +412,6 @@ describe('database', function () {
oldConfig: null,
newConfig: null,
memoryLimit: 4294967296,
xFrameOptions: 'DENY',
sso: true,
debugMode: null,
robotsTxt: null,
@@ -993,7 +992,6 @@ describe('database', function () {
oldConfig: null,
updateConfig: null,
memoryLimit: 4294967296,
xFrameOptions: 'DENY',
sso: true,
debugMode: null,
robotsTxt: null,
@@ -1028,7 +1026,6 @@ describe('database', function () {
oldConfig: null,
updateConfig: null,
memoryLimit: 0,
xFrameOptions: 'SAMEORIGIN',
sso: true,
debugMode: null,
robotsTxt: null,