pavex::http::header

Constant X_FRAME_OPTIONS

pub const X_FRAME_OPTIONS: HeaderName;
Expand description

Indicates whether or not a browser should be allowed to render a page in a frame.

Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.

The added security is only provided if the user accessing the document is using a browser supporting x-frame-options.