伊宁项目更改相关 伊宁安全漏洞修复,增加响应头过滤器

ruoyi-framework/src/main/java/com/ruoyi/framework/filter/ContentTypeOptionsHeaderFilter.java

@@ -11,7 +11,7 @@ public class ContentTypeOptionsHeaderFilter implements Filter {
             throws IOException, ServletException {
         HttpServletResponse httpServletResponse = (HttpServletResponse) response;
         httpServletResponse.setHeader("X-Content-Type-Options", "nosniff");
-        httpServletResponse.setHeader("X-Frame-Options", "DENY");
+        httpServletResponse.setHeader("X-Frame-Options", "SAMEORIGIN");
         httpServletResponse.setHeader("X-XSS-Protection", "1; mode=block");
         chain.doFilter(request, response);
     }