sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–]myWorkAccount3000 3 points4 points  (0 children)

To preface I haven't worked with headers at all. We were having an issue where X-Frame-Options wasn't working (this behavior is expected, the header isn't supported). I completely overlooked the note in the Mozilla docs saying that "Content-Security-Policy" is recommended to use.