Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
chengwenliang
/
newsupernova
2
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: c9405dd336
Branches Tags
newsupernova
/
vendor
/
magento
/
framework
/
App
/
Response
/
HeaderProvider
/
XFrameOptions.php

XFrameOptions.php 1.0 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Copyright © Magento, Inc. All rights reserved.
    4. 

  4.  * See COPYING.txt for license details.
    5. 

  5.  */
    6. 

  6. namespace Magento\Framework\App\Response\HeaderProvider;
    7. 

  7. 

  8. use \Magento\Framework\App\Response\Http;
    9. 

  9. 

  10. /**
    11. 

  11.  * Adds an X-FRAME-OPTIONS header to HTTP responses to safeguard against click-jacking.
    12. 

  12.  */
    13. 

  13. class XFrameOptions extends \Magento\Framework\App\Response\HeaderProvider\AbstractHeaderProvider
    14. 

  14. {
    15. 

  15.     /** Deployment config key for frontend x-frame-options header value */
    16. 

  16.     const DEPLOYMENT_CONFIG_X_FRAME_OPT = 'x-frame-options';
    17. 

  17. 

  18.     /** Always send SAMEORIGIN in backend x-frame-options header */
    19. 

  19.     const BACKEND_X_FRAME_OPT = 'SAMEORIGIN';
    20. 

  20. 

  21.     /**
    22. 

  22.      * x-frame-options Header name
    23. 

  23.      *
    24. 

  24.      * @var string
    25. 

  25.      */
    26. 

  26.     protected $headerName = Http::HEADER_X_FRAME_OPT;
    27. 

  27. 

  28.     /**
    29. 

  29.      * x-frame-options header value
    30. 

  30.      *
    31. 

  31.      * @var string
    32. 

  32.      */
    33. 

  33.     protected $headerValue;
    34. 

  34. 

  35.     /**
    36. 

  36.      * @param string $xFrameOpt
    37. 

  37.      */
    38. 

  38.     public function __construct($xFrameOpt = 'SAMEORIGIN')
    39. 

  39.     {
    40. 

  40.         $this->headerValue = $xFrameOpt;
    41. 

  41.     }
    42. 

  42. }
    43.