aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--src/guff.cr2
1 files changed, 2 insertions, 0 deletions
diff --git a/src/guff.cr b/src/guff.cr
index b610e96..b6eaa4b 100644
--- a/src/guff.cr
+++ b/src/guff.cr
@@ -574,6 +574,7 @@ module Guff
def authenticated_call(context : HTTP::Server::Context)
if context.request.path.not_nil!.match(PATH_RE)
+ context.response.headers["x-frame-options"] = "SAMEORIGIN"
context.response.content_type = "text/html; charset=utf-8"
context.response.status_code = 200
Views::AdminPageView.new(@context).to_s(context.response)
@@ -631,6 +632,7 @@ module Guff
response : HTTP::Server::Response,
error : String? = nil
)
+ context.response.headers["x-frame-options"] = "SAMEORIGIN"
response.content_type = "text/html; charset=utf-8"
response.status_code = 200
Views::LoginPageView.new(@context, error).to_s(response)