require X-Frame-Options: SAMEORIGIN for clickjack prevention

2025-03-23 02:05:41 +08:00 · 2013-10-28 15:14:08 -07:00 · 2013-10-28 15:14:08 -07:00 · bd5fe86c87
commit bd5fe86c87
parent e52f6e0f6d
1 changed files with 3 additions and 0 deletions
--- a/config/initializers/11-rack-protection.rb
+++ b/config/initializers/11-rack-protection.rb
@ -0,0 +1,3 @@
+require 'rack/protection'
+
+Rails.configuration.middleware.use Rack::Protection::FrameOptions