How do I get Sinatra to refrain from adding the X-Frame-Options header?

后端未结

关注

 6  1817

南旧 2020-12-08 04:55

I am using Sinatra to return some IFRAME contents, and I\'d like to allow cross-domain src. Unfortunately, Sinatra is automatically adding an X-Frame-Options header to my re

6条回答

北海茫月 (楼主)

2020-12-08 05:18
Neither of the options presented here worked for my sinatra app. I ended up adding an after filter to modify the X-Frame-Options header to allow the app to be framed in by Facebook.
```
after do
  headers({ 'X-Frame-Options' => 'ALLOW-FROM apps.facebook.com' })
end
```
0 讨论(0)

查看其它6个回答
发布评论:

提交评论
- 加载中...