Infrastructure/ghost
0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2025-02-03 23:00:14 -05:00
Code Issues Activity
ghost/core/test/unit
History
Kevin Ansfield f88adb9180
Added x-frame-options header to /ghost/ route (#10760) 
no issue
- by default the `/ghost/` route will add an `x-frame-options: sameorigin` header to the response to help protect the admin area against clickjacking
- the header can be disabled by adding `"adminFrameProtection": false` to the `config.{env}.json` configuration file

Credits: Muhammad Fawwad Obaida
2019-05-28 09:04:48 +01:00
..
adapters 🐛 Fixed post scheduling on restart (#10726) 2019-05-06 11:11:43 +02:00
api 🎨 Allowed protocol overwrite for canonical URLs (#10729) 2019-05-06 15:27:54 +02:00
apps 🐛 Fixed empty amp page 2019-02-27 17:56:09 +01:00
config Removed old jshint/jscs rules 2018-06-02 21:48:23 +02:00
data Updated link to Marketplace (#10754) 2019-05-22 16:55:28 +08:00
helpers Removed use of filters module 2019-04-16 11:05:33 +02:00
lib Added caption support to code card renderer (#10719) 2019-05-01 17:10:24 +02:00
models Updated to use slugify method from SDK for safe string 2019-05-07 15:33:07 +05:30
public Refactored Ghost SDK unit test 2018-10-05 16:49:46 +02:00
services Restructured theme check logic 2019-04-22 22:34:12 +02:00
web Added x-frame-options header to /ghost/ route (#10760) 2019-05-28 09:04:48 +01:00