diff options
author | jim-p <jimp@pfsense.org> | 2012-05-15 11:43:50 -0400 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2012-05-15 11:44:38 -0400 |
commit | c886fed9ba6a19fface58c918be5d7b111cca1f3 (patch) | |
tree | 9b0c7e5454e5c250304c43a7cd422c2891e548e1 | |
parent | 29c2c1db15b7b6765da24218f06295a98e9e8983 (diff) | |
download | pfsense-c886fed9ba6a19fface58c918be5d7b111cca1f3.zip pfsense-c886fed9ba6a19fface58c918be5d7b111cca1f3.tar.gz |
As suggested by wagonza, using SAMEORIGIN for X-Frame-Options is sufficient here, and does allow the traffic graphs to work. Fixes #2419
-rw-r--r-- | etc/inc/auth.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/etc/inc/auth.inc b/etc/inc/auth.inc index d03004d..5b62e6a 100644 --- a/etc/inc/auth.inc +++ b/etc/inc/auth.inc @@ -1410,6 +1410,6 @@ function session_auth() { return true; } -Header("X-Frame-Options: DENY"); +Header("X-Frame-Options: SAMEORIGIN"); ?>
\ No newline at end of file |