diff options
| author |  Inverle <inverle@proton.me>
| 2025-06-18 22:20:17 +0200 |
|---|---|---|
| committer |  GitHub <noreply@github.com>
| 2025-06-18 22:20:17 +0200 |
| commit | a6948218fb1c66fe146c7651555e5a1f791c8112 (patch) | |
| tree | a878349b1d2808d2ed7318aa34df0546e534690e /app/Controllers/indexController.php | |
| parent | aa45bcbe5a0a723c4b6adfb50139be0be6336d2b (diff) | |
frame-ancestors CSP (#7677)
Diffstat (limited to 'app/Controllers/indexController.php')
| -rw-r--r-- | app/Controllers/indexController.php | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/app/Controllers/indexController.php b/app/Controllers/indexController.php index 1f49e03ee..661e8300b 100644 --- a/app/Controllers/indexController.php +++ b/app/Controllers/indexController.php @@ -50,6 +50,7 @@ class FreshRSS_index_Controller extends FreshRSS_ActionController { 'default-src' => "'self'", 'frame-src' => '*', 'img-src' => '* data:', + 'frame-ancestors' => "'none'", 'media-src' => '*', ]); @@ -138,6 +139,7 @@ class FreshRSS_index_Controller extends FreshRSS_ActionController { 'default-src' => "'self'", 'frame-src' => '*', 'img-src' => '* data:', + 'frame-ancestors' => "'none'", 'media-src' => '*', ]); } |