Dec 3, 2014
Prevent cross-domain hacks
Set "X-Frame-Options" to "SAMEORIGIN" or "DENY" in your server's HTTP header to prevent cross-domain hacks such as somebody else embedding your site in an iframe without your permission.
seen from Saudi Arabia
seen from China
seen from Tรผrkiye
seen from United States
seen from Czechia
seen from Yemen
seen from Belgium
seen from United States
seen from Yemen
seen from United States
seen from Japan
seen from Yemen
seen from Switzerland
seen from United States
seen from United States
seen from United States
seen from Kazakhstan
seen from United States
seen from Algeria
seen from United States
Prevent cross-domain hacks
Set "X-Frame-Options" to "SAMEORIGIN" or "DENY" in your server's HTTP header to prevent cross-domain hacks such as somebody else embedding your site in an iframe without your permission.
Deploying linked web apps to Dokku using an extra nginx config file.
In the last post I detailed how to setup Dokku and Nginx with CORS. This time round I shall be showing a simple way to get 2 Dokku applications serving content under the same origin.
All you need to do is created an nginx config inside a subfolder of the dokku home directory (I created mine at /home/dokku/linkapp/nginx.conf) and point this at the named upstreams from the other config files (e.g. app1/nginx.conf, app2/nginx.conf).ย
This has the side effect that nginx will fall over if you remove either of the apps but apart from that you should be fine.ย