[phpMyAdmin Git] [phpmyadmin/phpmyadmin] 17b85a: Improve AllowThirdPartyFraming configuration (#14688)

24 Oct 2018


      Branch: refs/heads/master
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: 17b85ab50ca10dab96ee49153185eaffbe8216f8
https://github.com/phpmyadmin/phpmyadmin/commit/17b85ab50ca10dab96ee49153185...
Author: Tazo Todua tazotodua@gmail.com
Date: 2018-10-24 (Wed, 10 October 2018) -03:00
Changed paths: 
M libraries/classes/Header.php
Log Message:
-----------
Improve AllowThirdPartyFraming configuration (#14688)
The only correct way to check the frame-options. The existing version was incorrect. Even setting to value to "blabla", it bypassed the ! check in php. So, at first, it should be checked if the "sameorigin" is value, and after that, everything other than true should DENY the frame.
Signed-off-by: Tazo Todua tazotodua@gmail.com

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

[phpMyAdmin Git] [phpmyadmin/phpmyadmin] 17b85a: Improve AllowThirdPartyFraming configuration (#14688)