XFrameOptions.value()

Set a custom header value.

Usage

Source

XFrameOptions.value(value)

Use this when you already have a fully-formed header value and want to bypass directive helpers.

Notes

This method rejects CR/LF characters to avoid header injection. Any further validation/normalization belongs in Secure.validate_and_normalize_headers(...).

Parameters

value

The complete header value.

Returns

The XFrameOptions instance for method chaining.