From bd5fe86c879d4fe5a39639f06b0de2799d499e15 Mon Sep 17 00:00:00 2001
From: Raul Murciano <raul@murciano.net>
Date: Mon, 28 Oct 2013 15:14:08 -0700
Subject: [PATCH] require `X-Frame-Options: SAMEORIGIN` for clickjack
 prevention

---
 config/initializers/11-rack-protection.rb | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 config/initializers/11-rack-protection.rb

diff --git a/config/initializers/11-rack-protection.rb b/config/initializers/11-rack-protection.rb
new file mode 100644
index 00000000000..68e3d710632
--- /dev/null
+++ b/config/initializers/11-rack-protection.rb
@@ -0,0 +1,3 @@
+require 'rack/protection'
+
+Rails.configuration.middleware.use Rack::Protection::FrameOptions
\ No newline at end of file