Class: Contrast::Agent::Assess::Rule::Response::ClickJacking

Inherits:

HeaderRule

• Object
• BaseRule
• HeaderRule
• Contrast::Agent::Assess::Rule::Response::ClickJacking

Defined in:

lib/contrast/agent/assess/rule/response/click_jacking_header_rule.rb

Overview

These rules check the content of the HTTP Response to determine if the headers contains the required header

Constant Summary

HEADER_KEYS =

%w[X-Frame-Options].cs__freeze

ACCEPTED_VALUES =

[/^deny/i, /^sameorigin/i].cs__freeze

DEFAULT_SAFE =

false

Constants inherited from HeaderRule

HeaderRule::HEADER_TYPE

Constants inherited from BaseRule

BaseRule::DATA

Instance Method Summary

• #rule_id ⇒ Object

Methods inherited from HeaderRule

#analyze_response?, #headers?, #violated?

Methods inherited from BaseRule

#analyze

Instance Method Details

#rule_id ⇒ Object

# File 'lib/contrast/agent/assess/rule/response/click_jacking_header_rule.rb', line 18

def rule_id
  'clickjacking-control-missing'
end