tdsds.com/gitea
1
1
Fork 0
mirror of https://github.com/go-gitea/gitea synced 2025-11-22 22:28:16 +00:00
Code Releases Activity

Move cors.X_FRAME_OPTIONS to security.X_FRAME_OPTIONS and add false option

Browse Source
This commit is contained in:
silverwind
2024-04-03 01:17:38 +02:00
parent e006451ab1
commit aace6002ee
8 changed files with 19 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
routers/common/errpage.go
View File

@@ -34,7 +34,10 @@ func RenderPanicErrorPage(w http.ResponseWriter, req *http.Request, err any) {
routing.UpdatePanicError(req.Context(), err)
httpcache.SetCacheControlInHeader(w.Header(), 0, "no-transform")
w.Header().Set(`X-Frame-Options`, setting.CORSConfig.XFrameOptions)
if setting.XFrameOptions != "false" {
w.Header().Set(`X-Frame-Options`, setting.XFrameOptions)
}
tmplCtx := context.TemplateContext{}
tmplCtx["Locale"] = middleware.Locale(w, req)