From bcb39ad4db0f4c1d9bf35437852ee0b74e1680ce Mon Sep 17 00:00:00 2001
From: Frederic Guillot <fred@kanboard.net>
Date: Sat, 21 Mar 2015 18:25:35 -0400
Subject: Add option to enable/disable iframe inclusion http header

---
 app/constants.php | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'app/constants.php')

diff --git a/app/constants.php b/app/constants.php
index 63902b4d..82d26f2c 100644
--- a/app/constants.php
+++ b/app/constants.php
@@ -68,6 +68,9 @@ defined('MAIL_SENDMAIL_COMMAND') or define('MAIL_SENDMAIL_COMMAND', '/usr/sbin/s
 // Enable or disable "Strict-Transport-Security" HTTP header
 defined('ENABLE_HSTS') or define('ENABLE_HSTS', true);
 
+// Enable or disable "X-Frame-Options: DENY" HTTP header
+defined('ENABLE_XFRAME') or define('ENABLE_XFRAME', true);
+
 // Default files directory
 defined('FILES_DIR') or define('FILES_DIR', 'data/files/');
 
-- 
cgit v1.2.3