GuanM/tabby-web
1
0
Fork 0
mirror of https://github.com/Eugeny/tabby-web.git synced 2025-06-07 21:19:53 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update deprecated X-Frame-Options to CSP frame-ancestors for demo embed

Browse Source 
See #74
This commit is contained in:
Manuel 2022-10-16 10:53:36 +01:00 committed by GitHub
parent 6d4d4377fa
commit 200a95d819
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
backend/tabby/app/views.py
View File

@ -25,7 +25,7 @@ class TerminalView(APIView):
class DemoView(APIView):
def get(self, request, format=None):
response = static.serve(request, 'demo.html', document_root=str(settings.STATIC_ROOT))
response['X-Frame-Options'] = 'ALLOW-FROM https://tabby.sh'
response['Content-Security-Policy'] = 'frame-ancestors https://tabby.sh'
return response