cerebrate-project
/
cerebrate
mirror of https://github.com/cerebrate-project/cerebrate
1
0
Fork 0
Code Issues Releases Wiki Activity

fix: [security] X-FRAME-OPTIONS: DENY added to all responses 

- as reported by SK-CERT
cli-modification-summary
iglocska 2022-09-19 01:11:18 +02:00
parent af1e2fd632
commit a9eccb3097
No known key found for this signature in database
GPG Key ID: BEA224F1FEF113AC
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
src/Controller/AppController.php
View File

@ -149,6 +149,7 @@ class AppController extends Controller
if ($this->modelClass == 'Tags.Tags') { if ($this->modelClass == 'Tags.Tags') {
$this->set('metaGroup', !empty($this->isAdmin) ? 'Administration' : 'Cerebrate'); $this->set('metaGroup', !empty($this->isAdmin) ? 'Administration' : 'Cerebrate');
} }
$this->response = $this->response->withHeader('X-Frame-Options', 'DENY');
} }
if (mt_rand(1, 50) === 1) { if (mt_rand(1, 50) === 1) {
$this->FloodProtection->cleanup(); $this->FloodProtection->cleanup();