TryGhost/Ghost
1
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2024-12-22 02:11:44 +03:00
Code Issues Projects Releases Wiki Activity
a63d29f859
Ghost/core/server/web/admin
History
Kevin Ansfield f88adb9180
Added x-frame-options header to /ghost/ route (#10760) 
no issue
- by default the `/ghost/` route will add an `x-frame-options: sameorigin` header to the response to help protect the admin area against clickjacking
- the header can be disabled by adding `"adminFrameProtection": false` to the `config.{env}.json` configuration file

Credits: Muhammad Fawwad Obaida
2019-05-28 09:04:48 +01:00
..
views Moved apps into web folder (#9308) 2017-12-06 17:37:54 +01:00
app.js Optimised web/ debug logs 2018-10-04 17:43:08 +02:00
controller.js Added x-frame-options header to /ghost/ route (#10760) 2019-05-28 09:04:48 +01:00
index.js Moved apps into web folder (#9308) 2017-12-06 17:37:54 +01:00
middleware.js ES6 migration: server/web (#9729) 2018-07-12 15:35:35 +02:00
serviceworker.js Optimised web/ debug logs 2018-10-04 17:43:08 +02:00