Skip to content

Commit ca0ac39

Browse files
authored
Remove deprecated_inline from X-Frame-Options SAMEORIGIN (#37775)
1 parent 8c47156 commit ca0ac39

File tree

1 file changed

+1
-1
lines changed
  • files/en-us/web/http/headers/x-frame-options

1 file changed

+1
-1
lines changed

files/en-us/web/http/headers/x-frame-options/index.md

+1-1
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ If you specify `DENY`, not only will the browser attempt to load the page in a f
4040

4141
- `DENY`
4242
- : The page cannot be displayed in a frame, regardless of the site attempting to do so.
43-
- `SAMEORIGIN` {{deprecated_inline}}
43+
- `SAMEORIGIN`
4444
- : The page can only be displayed if all ancestor frames are same origin to the page itself.
4545
- `ALLOW-FROM origin` {{deprecated_inline}}
4646
- : This is an obsolete directive. Modern browsers that encounter response headers with this directive will ignore the header completely. The {{HTTPHeader("Content-Security-Policy")}} HTTP header has a {{HTTPHeader("Content-Security-Policy/frame-ancestors", "frame-ancestors")}} directive which you should use instead.

0 commit comments

Comments
 (0)