From 684b6482e4f9d966dfa088b53507847492a023c3 Mon Sep 17 00:00:00 2001 From: Guillermo Iguaran Date: Fri, 10 Aug 2012 21:41:57 -0500 Subject: [PATCH] Add doc for config.action_dispatch.default_headers Add documentation for config.action_dispatch.default_headers to Rails Configuring guide. --- guides/source/configuring.textile | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/guides/source/configuring.textile b/guides/source/configuring.textile index 513e3a2b2b..5ed3ad4a6b 100644 --- a/guides/source/configuring.textile +++ b/guides/source/configuring.textile @@ -338,6 +338,12 @@ h4. Configuring Action Dispatch * +config.action_dispatch.session_store+ sets the name of the store for session data. The default is +:cookie_store+; other valid options include +:active_record_store+, +:mem_cache_store+ or the name of your own custom class. +* +config.action_dispatch.default_headers+ is a hash with HTTP headers that are set by default in each response. By default, this is defined as: + + +config.action_dispatch.default_headers = { 'X-Frame-Options' => 'SAMEORIGIN', 'X-XSS-Protection' => '1; mode=block' } + + * +config.action_dispatch.tld_length+ sets the TLD (top-level domain) length for the application. Defaults to +1+. * +ActionDispatch::Callbacks.before+ takes a block of code to run before the request.