internalunsafeframing

package
v0.0.0-...-7bfb722 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 19, 2024 License: Apache-2.0 Imports: 0 Imported by: 0

Documentation

Overview

Package internalunsafeframing is used internally to override Framing protections.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AllowList 

type AllowList struct {
	// ReportOnly sets the policy to Report-Only instead of enforcing.
	ReportOnly bool
	// Hostnames is a list of origins (with potential wildcards) that will be able to frame the site.
	// Wildcards must follow the CSP specification:
	// https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/frame-ancestors.
	Hostnames []string
}

AllowList selectively allows framing.

Please note that on older browsers this is equivalent to Disable.

type Disable 

type Disable struct {
	// SkipReports completely disables framing protectcion.
	SkipReports bool
}

Disable turns framing protection to report-only where possible.

Source Files

View all Source files

Directories

Path Synopsis
Package unsafeframing can be used to disable Framing protections on specific handler registration.
 Package unsafeframing can be used to disable Framing protections on specific handler registration.
Package unsafeframingfortests can be used to disable Framing protections on specific handler registration in tests.
 Package unsafeframingfortests can be used to disable Framing protections on specific handler registration in tests.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.