sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Allow iframes to external domains

remotes/origin/stable5
Lukas Reschke 2013-01-22 00:30:09 +07:00
parent 8223117569
commit 3ffbaf4795
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/template.php
Unescape Escape View File

@ -189,8 +189,8 @@ class OC_Template{
header('X-Frame-Options: Sameorigin'); // Disallow iFraming from other domains
header('X-XSS-Protection: 1; mode=block'); // Enforce browser based XSS filters
header('X-Content-Type-Options: nosniff'); // Disable sniffing the content type for IE
header('Content-Security-Policy: default-src \'self\'; style-src \'self\' \'unsafe-inline\'');
header('X-WebKit-CSP: default-src \'self\'; style-src \'self\' \'unsafe-inline\'');
header('Content-Security-Policy: default-src \'self\'; style-src \'self\' \'unsafe-inline\'; frame-src *');
header('X-WebKit-CSP: default-src \'self\'; style-src \'self\' \'unsafe-inline\'; frame-src *');
$this->findTemplate($name);
}