send_frame_options_header()
Sends a HTTP header to limit rendering of pages to same origin iframes.
No Hooks.
Returns
null. Nothing (null).
Usage
send_frame_options_header();
Notes
- See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Frame-Options
- See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Content-Security-Policy/frame-ancestors
Changelog
| Since 3.1.3 | Introduced. |
send_frame_options_header() send frame options header code WP 6.9.1
function send_frame_options_header() {
if ( ! headers_sent() ) {
header( 'X-Frame-Options: SAMEORIGIN' );
header( "Content-Security-Policy: frame-ancestors 'self';" );
}
}