Skip to content
This repository
Browse code

Add 'X-Frame-Options' => 'SAMEORIGIN' and 'X-XSS-Protection' => '1; m…

…ode=block' CHANGELOG entry
  • Loading branch information...
commit 0b11dbe2fe6d640d0cbaec9a2d2886fb384a8c5b 1 parent 5a0372f
Santiago Pastorino spastorino authored

Showing 1 changed file with 6 additions and 0 deletions. Show diff stats Hide diff stats

  1. +6 0 actionpack/CHANGELOG.md
6 actionpack/CHANGELOG.md
Source Rendered
... ... @@ -1,5 +1,11 @@
1 1 ## Rails 4.0.0 (unreleased) ##
2 2
  3 +* Add 'X-Frame-Options' => 'SAMEORIGIN' and
  4 + 'X-XSS-Protection' => '1; mode=block'
  5 + as default headers.
  6 +
  7 + *Egor Homakov*
  8 +
3 9 * Allow data attributes to be set as a first-level option for form_for, so you can write `form_for @record, data: { behavior: 'autosave' }` instead of `form_for @record, html: { data: { behavior: 'autosave' } }` *DHH*
4 10
5 11 * Deprecate `button_to_function` and `link_to_function` helpers.

0 comments on commit 0b11dbe

Please sign in to comment.
Something went wrong with that request. Please try again.