MozillaWiki

WebAppSec/Secure Coding QA Checklist: Difference between revisions

Page Discussion

WebAppSec/Secure Coding QA Checklist (view source)

Revision as of 20:41, 19 November 2012

No change in size ,  19 November 2012
→‎Desired System Behavior
Line 164: Line 164:


===Desired System Behavior===
===Desired System Behavior===
The X-Frame-Options header is present for all HTML pages on the website. The specified value of "DENY" or "SAMEDOMAIN" is a decision made by the application owners. Either value is acceptable for this test.
The X-Frame-Options header is present for all HTML pages on the website. The specified value of "DENY" or "SAMEORIGIN" is a decision made by the application owners. Either value is acceptable for this test.


===Further information===
===Further information===
Bhearsum
canmove, Confirmed users
6,439

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/488628"