Commit a48bf6ab authored by vehjelmtvedt's avatar vehjelmtvedt
Browse files

Set X-Frame-Options header

parent 55cd0c73
......@@ -143,6 +143,8 @@ public class Handler extends AbstractHandler
// User is now logged in with a valid sesion.
// We set the session cookie to keep the user logged in:
response.addCookie(new Cookie("session",session.identity.toString()));
// Set X-Frame-Options header
response.setHeader("X-Frame-Options", "SAMEORIGIN");
final PrintWriter out = response.getWriter();
// Handle a logged in request.
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment