Automatically sets the X-Frame-Options
header on all requests to be SAMEORIGIN
. Various security scans will fail you for not having this header set. Now you can just drop this into your apps and be compliant.
Add this line to your application's Gemfile:
gem 'enforce_same_origin'
And then execute:
$ bundle
Or install it yourself as:
$ gem install enforce_same_origin
In your config.ru
add the following:
use Rack::EnforceSameOrigin
- Fork it ( http://github.com/beenverifiedinc/enforce_same_origin/fork )
- Create your feature branch (
git checkout -b my-new-feature
) - Commit your changes (
git commit -am 'Add some feature'
) - Push to the branch (
git push origin my-new-feature
) - Create new Pull Request