Commit 9678a1d4 authored by David McMullin's avatar David McMullin

add x-frame headers

parent 9723c4ab
......@@ -12,6 +12,10 @@ gem 'rails_autolink', '1.0.9'
gem 'rack-cors', '0.2.7', :require => 'rack/cors'
# click-jacking protection
gem 'rack-protection', '1.2'
# authentication
gem 'devise', '2.1.2'
......
......@@ -14,4 +14,6 @@ if defined?(Unicorn)
end
use Rack::Deflater
use Rack::ChromeFrame, :minimum => 8
use Rack::Protection::FrameOptions
run Diaspora::Application
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment