Skip to content
Browse files

Add doc for config.action_dispatch.default_headers

Add documentation for config.action_dispatch.default_headers to
Rails Configuring guide.
  • Loading branch information...
1 parent c347236 commit 684b6482e4f9d966dfa088b53507847492a023c3 @guilleiguaran guilleiguaran committed Aug 10, 2012
Showing with 6 additions and 0 deletions.
  1. +6 −0 guides/source/configuring.textile
View
6 guides/source/configuring.textile
@@ -338,6 +338,12 @@ h4. Configuring Action Dispatch
* +config.action_dispatch.session_store+ sets the name of the store for session data. The default is +:cookie_store+; other valid options include +:active_record_store+, +:mem_cache_store+ or the name of your own custom class.
+* +config.action_dispatch.default_headers+ is a hash with HTTP headers that are set by default in each response. By default, this is defined as:
+
+<ruby>
+config.action_dispatch.default_headers = { 'X-Frame-Options' => 'SAMEORIGIN', 'X-XSS-Protection' => '1; mode=block' }
+</ruby>
+
* +config.action_dispatch.tld_length+ sets the TLD (top-level domain) length for the application. Defaults to +1+.
* +ActionDispatch::Callbacks.before+ takes a block of code to run before the request.

0 comments on commit 684b648

Please sign in to comment.
Something went wrong with that request. Please try again.