aboutsummaryrefslogtreecommitdiff
path: root/MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs
diff options
context:
space:
mode:
authorTavares André <tavares_and@hotmail.com>2015-06-30 20:26:42 +0200
committerTavares André <tavares_and@hotmail.com>2015-06-30 20:26:42 +0200
commit27d6135493c778bddee6ad6e044ed167c6449d7d (patch)
tree4cf323758d3e9caf115c9627f8e6da7dd78c543f /MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs
parent1e07dbec63bced51857e67b00941b91ca86a7f77 (diff)
parent86571a629764be30e6d2e671db9e87c42a72a7f4 (diff)
Merge branch 'dev' of https://github.com/MediaBrowser/MediaBrowser into dev
Diffstat (limited to 'MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs')
-rw-r--r--MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs10
1 files changed, 8 insertions, 2 deletions
diff --git a/MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs b/MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs
index 7490d62d6..0da34efc6 100644
--- a/MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs
+++ b/MediaBrowser.Server.Implementations/HttpServer/ResponseFilter.cs
@@ -12,10 +12,12 @@ namespace MediaBrowser.Server.Implementations.HttpServer
{
private static readonly CultureInfo UsCulture = new CultureInfo("en-US");
private readonly ILogger _logger;
+ private readonly Func<bool> _denyIframeEmbedding;
- public ResponseFilter(ILogger logger)
+ public ResponseFilter(ILogger logger, Func<bool> denyIframeEmbedding)
{
_logger = logger;
+ _denyIframeEmbedding = denyIframeEmbedding;
}
/// <summary>
@@ -28,7 +30,11 @@ namespace MediaBrowser.Server.Implementations.HttpServer
{
// Try to prevent compatibility view
res.AddHeader("X-UA-Compatible", "IE=Edge");
- res.AddHeader("X-Frame-Options", "DENY");
+
+ if (_denyIframeEmbedding())
+ {
+ res.AddHeader("X-Frame-Options", "SAMEORIGIN");
+ }
var exception = dto as Exception;
generated by cgit v1.2.3 (git 2.46.0) at 2025-12-11 01:51:21 +0000