Commit 9678a1d4 authored by David McMullin's avatar David McMullin
Browse files

add x-frame headers

parent 9723c4ab

Gemfile

+4 −0
Original line number Diff line number Diff line
@@ -12,6 +12,10 @@ gem 'rails_autolink', '1.0.9' 


gem 'rack-cors', '0.2.7', :require => 'rack/cors'



# click-jacking protection



gem 'rack-protection', '1.2'



# authentication



gem 'devise', '2.1.2'

config.ru

+2 −0
Original line number Diff line number Diff line
@@ -14,4 +14,6 @@ if defined?(Unicorn) 
end

use Rack::Deflater

use Rack::ChromeFrame, :minimum => 8

use Rack::Protection::FrameOptions



run Diaspora::Application