Prevent Click-jacking

 

Edit the web.config file (Optional)

You can also add the header directly by modifying the web.config file of your website:

  1. Open the web.config file located in your site's root directory.

  2. Add the following code within the <system.webServer> section:

    xml
    <system.webServer>
    <httpProtocol>
        <customHeaders>
            <add name="X-Frame-Options" value="DENY" />
        </customHeaders>
    </httpProtocol>
</system.webServer>

    If you want to allow framing only within the same origin, use SAMEORIGIN instead of DENY:

    xml
    <add name="X-Frame-Options" value="SAMEORIGIN" />

  3. Save the web.config file and restart IIS (if necessary) to apply the changes.

Comments

Post a Comment

Popular posts from this blog

git journey

28JAN2025 Moving local folders was a breeze!  Close VS code.  Move the folder.  Reopen. Done. git remote -v To check remote folder is correct git remote set-url origin <new-repository-URL> ..if not 23OCT2024 Make sure your .gitignore and .gitattributes files are in place. In VS you can press: CTRL + ' Or in Ubuntu go to the root of the solution in terminal git init git add . git commit -m "Initial commit" Then Create a Repository on GitHub : Go to GitHub and log in. Click on the New button to create a new repository. Name the repository, set it to public or private, and create it. Add the Remote Repository : Copy the repository URL from GitHub and use it to add a remote in your local Git. git remote add origin https://github.com/your-username/your-repository.git Push Your Code : Push your local repository to GitHub. git push -u origin master  (check if master or main) git branch   listed the branch, funnily enough Then later after some code-peddling git...
Read more

Django Journey

Image
15APR2025 python manage.py runserver 0.0.0.0:80 for LAN access python manage.py flush   to restart DB from scratch. pip -V    will confirm if you in the venv 02APR2025 Probably better to use . foldername, while ensuring ,gitignore has this. python -m venv .v env .venv \Scripts\activate pip install django 22FEB2025 python -m venv env env \Scripts\activate pip install django deactivate env \Scripts\activate 13FEB2025 python manage.py makemigrations and then python manage.py migrate python manage.py createsuperuser    python manage.py changepassword < user_name > 06FEB2025 Use the setup instructions for creating a github project in website first, then clone it locally. Now you have  C:\Source\github\bendecko\projectname\ Navigate to that folder and run  django-admin startproject longtermreviews .      (note .) This creates the standard structure: Where my_site is projectname (master) and blog,reviews,user,login etc is modu...
Read more

github start project

See below for new machine user settings... Follow these instructions: Ensure the Repository is already created in the github website.  (Add .gitignore for project-type, and MD file) Then: 1. Clone the Repository Open VS Code . Open the Command Palette ( Ctrl + Shift + P or Cmd + Shift + P on Mac). Type "Git: Clone" and select it. Paste the URL: https: //github.com/bendecko/projectname.git Choose a folder where you want to store the project.  IT WILL create the projectname folder Wait for the repository to be cloned, then click Open when prompted. 2. Open the Project Manually (If Needed) If VS Code doesn't prompt you to open the folder: Click File > Open Folder (or Ctrl + K, Ctrl + O ). Navigate to the cloned project directory. Click Open . 3. Install Dependencies (If Required) If it's a Python project, check for requirements.txt or pyproject.toml : pip install -r requirements.txt If it's a Node.js project, check for package.json and run: npm install ...
Read more