pkg/middleware · 37011dd8f30eefa642170daa62ae4cb7c0afb37d · Kornkitt Poolsup / nexpie-grafana-theme

Security: Add new setting allow_embedding (#16853) · 1c142752

When allow_embedding is false (default) the Grafana backend 
will set the http header `X-Frame-Options: deny` in all responses 
to non-static content which will instruct browser to not allow 
Grafana to be embedded in `<frame>`, `<iframe>`, 
`<embed>` or `<object>`.

Closes #14189

committed May 06, 2019

1c142752

Name	Last commit	Last Update
..
auth_proxy		Loading commit data...
auth.go		Loading commit data...
auth_proxy.go		Loading commit data...
auth_test.go		Loading commit data...
dashboard_redirect.go		Loading commit data...
dashboard_redirect_test.go		Loading commit data...
headers.go		Loading commit data...
logger.go		Loading commit data...
middleware.go		Loading commit data...
middleware_test.go		Loading commit data...
org_redirect.go		Loading commit data...
org_redirect_test.go		Loading commit data...
perf.go		Loading commit data...
quota.go		Loading commit data...
quota_test.go		Loading commit data...
recovery.go		Loading commit data...
recovery_test.go		Loading commit data...
render_auth.go		Loading commit data...
request_metrics.go		Loading commit data...
request_tracing.go		Loading commit data...
util.go		Loading commit data...
validate_host.go		Loading commit data...