[PHP-WEBMASTER] [web-bugs] master: Add X-Frame-Options: SAMEORIGIN

[Sara Golemon]

Author: Sara Golemon (sgolemon)
Date: 2021-09-27T14:42:13Z

Commit: 
https://github.com/php/web-bugs/commit/2f06b4d7bb4c42311fb2ac9154f10438b800d697
Raw diff: 
https://github.com/php/web-bugs/commit/2f06b4d7bb4c42311fb2ac9154f10438b800d697.diff

Add X-Frame-Options: SAMEORIGIN

Changed paths:
  M  include/functions.php
  M  templates/layout.php


Diff:

diff --git a/include/functions.php b/include/functions.php
index a2ef5546..b72c2c8c 100644
--- a/include/functions.php
+++ b/include/functions.php
@@ -1514,6 +1514,7 @@ function response_header($title, $extraHeaders = '')
     $_header_done = true;
 
     header('Content-Type: text/html; charset=UTF-8');
+    header('X-Frame-Options: SAMEORIGIN');
 ?>
 <!DOCTYPE html>
 <html lang="en">
diff --git a/templates/layout.php b/templates/layout.php
index a0eb35f5..35a400e1 100644
--- a/templates/layout.php
+++ b/templates/layout.php
@@ -5,6 +5,7 @@
     <title>PHP :: <?= $this->e($title) ?></title>
     <link rel="shortcut icon" href="<?= $siteScheme ?>://<?= $siteUrl 
?>/images/favicon.ico">
     <link rel="stylesheet" href="/css/style.css">
+    <meta http-equiv="X-Frame-Options" content="SAMEORIGIN">
 </head>
 <body>
 <table id="top" class="head" cellspacing="0" cellpadding="0">

-- 
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php