Skip to content

Commit

Permalink
[5.0.x] Removed outdated note about limitations in Clickjacking prote…
Browse files Browse the repository at this point in the history 
…ction.

There is no need to list old browser versions or point users to
workarounds.
Backport of f302343 from main.
  • Loading branch information
@felixxm @nessita
felixxm authored and nessita committed Jul 4, 2024
1 parent 0602fc2 commit 43aa0c1
Showing 1 changed file with 3 additions and 20 deletions.
23 changes: 3 additions & 20 deletions docs/ref/clickjacking.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -126,24 +126,7 @@ a decorator overrides the middleware.
Limitations
===========

The ``X-Frame-Options`` header will only protect against clickjacking in a
modern browser. Older browsers will quietly ignore the header and need `other
clickjacking prevention techniques`_.
The ``X-Frame-Options`` header will only protect against clickjacking in
`modern browsers`_.

Browsers that support ``X-Frame-Options``
-----------------------------------------

* Internet Explorer 8+
* Edge
* Firefox 3.6.9+
* Opera 10.5+
* Safari 4+
* Chrome 4.1+

See also
--------

A `complete list`_ of browsers supporting ``X-Frame-Options``.

.. _complete list: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options#browser_compatibility
.. _other clickjacking prevention techniques: https://en.wikipedia.org/wiki/Clickjacking#Prevention
.. _modern browsers: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options#browser_compatibility

0 comments on commit 43aa0c1

Please sign in to comment.