WordPress.org

Make WordPress Core


Ignore:
Timestamp:
05/06/2011 09:28:53 PM (11 years ago)
Author:
ryan
Message:

Send X-Frame-Options: SAMEORIGIN for admin and login pages. see #12293

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/wp-includes/functions.php

    r17779 r17826  
    45354535}
    45364536
     4537/**
     4538 * Send a HTTP header to limit rendering of pages to same origin iframes.
     4539 *
     4540 * @link https://developer.mozilla.org/en/the_x-frame-options_response_header
     4541 *
     4542 * @since 3.2.0
     4543 * @return none
     4544 */
     4545function send_frame_options_header() {
     4546    @header( 'X-Frame-Options: SAMEORIGIN' );
     4547}
     4548
    45374549?>
Note: See TracChangeset for help on using the changeset viewer.