Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
fix(core): iframe security fix
  • Loading branch information
polonel committed May 18, 2022
1 parent b6f465f commit 6ea9db7
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions src/middleware/index.js
Expand Up @@ -173,6 +173,7 @@ function allowCrossDomain (req, res, next) {
'Access-Control-Allow-Headers',
'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,accesstoken,X-RToken,X-Token'
)
res.setHeader('Content-Security-Policy', "frame-ancestors 'none';")

if (req.method === 'OPTIONS') {
res.sendStatus(200)
Expand Down

0 comments on commit 6ea9db7

Please sign in to comment.