Startsida Utforska Hjälp
Logga in
xry111
/
hugo-academic
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Bläddra i källkod

feat: add security option to allow frames

site.Params.security.allow_frame
George Cushen 2 år sedan
förälder
55d7a2bff4
incheckning
48f2ceefe1
2 ändrade filer med 4 tillägg och 3 borttagningar
Delad Vy Visa Diff Statistik
  1. 3 2
      wowchemy/layouts/index.headers
  2. 1 1
      wowchemy/layouts/index.redirects

+ 3 - 2
wowchemy/layouts/index.headers
Visa fil 

@@ -1,12 +1,13 @@
 
 {{- $csp_policy := site.Params.security.csp.policy | default "" -}}
 
 {{- $csp_report_only := site.Params.security.csp.report_only | default false -}}
 
+{{- $allow_frame := site.Params.security.allow_frame | default false -}}
 
 {{- $default_perms := "accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()" -}}
 
 {{- $permissions_policy := site.Params.security.permissions.policy | default $default_perms -}}
 
 # Netlify headers
 
 # Automatically generated
 
-# Documentation: http://bit.ly/netlify-deployment
 
+# Documentation: https://wowchemy.com/docs/hugo-tutorials/security/
 
 /*
 
-  X-Frame-Options: DENY
 
+  {{if not $allow_frame}}X-Frame-Options: DENY{{end}}
 
   X-XSS-Protection: 1; mode=block
 
   X-Content-Type-Options: nosniff
 
   Strict-Transport-Security: max-age=31536000; includeSubDomains

+ 1 - 1
wowchemy/layouts/index.redirects
Visa fil 

@@ -1,6 +1,6 @@
 
 # Netlify redirects
 
 # Automatically generated
 
-# Documentation: http://bit.ly/netlify-deployment
 
+# Documentation: https://docs.netlify.com/routing/redirects/
 
 {{- /* Note: code purposely un-indented to preserve required spacing in output. */ -}}
 
 {{- range $page := where site.AllPages ".Aliases" "!=" nil -}}
 
 {{- range $page.Aliases }}