Backup_Repos/komga
1
0
Fork 0
mirror of https://github.com/gotson/komga.git synced 2025-12-06 08:32:25 +01:00
Code Issues Projects Releases Wiki Activity

fix(api): set X-Frame-Options header to same origin for epubreader

Browse source
This commit is contained in:
Gauthier Roebroeck 2023-11-28 16:50:33 +08:00
parent 6e5e7a942a
commit 85cae8af64
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
komga/src/main/kotlin/org/gotson/komga/infrastructure/security/SecurityConfiguration.kt
View file

@ -87,6 +87,7 @@ class SecurityConfiguration(
} }
.headers { headersConfigurer -> .headers { headersConfigurer ->
headersConfigurer.cacheControl { it.disable() } // headers are set in WebMvcConfiguration headersConfigurer.cacheControl { it.disable() } // headers are set in WebMvcConfiguration
headersConfigurer.frameOptions { it.sameOrigin() } // for epubreader iframes
} }
.httpBasic { .httpBasic {
it.authenticationDetailsSource(userAgentWebAuthenticationDetailsSource) it.authenticationDetailsSource(userAgentWebAuthenticationDetailsSource)