module Ixtlan module Core module XFrameHeaders protected def x_frame_headers(mode = nil) case mode || self.class.instance_variable_get(:@_x_frame_mode) || Rails.configuration.x_frame_headers when :deny response.headers["X-FRAME-OPTIONS"] = "DENY" when :sameorigin response.headers["X-FRAME-OPTIONS"] = "SAMEORIGIN" when :off else warn "allowed values for x_frame_headers are :deny, :sameorigin, :off" end end def self.included(base) base.class_eval do def self.x_frame_headers(mode) if(mode) @_x_frame_mode = mode.to_sym else @_x_frame_mode = nil end end end end end end end