Convert the value of APP_X_FRAME_OPTIONS to lower case, because Freescout only accepts true and false in lower case, but in README.md it is document as upper case (TRUE or FALSE).
All other values like ALLOW, DENY and ALLOW-FROM (deprecated by most browsers) will also be converted to lower case, but are not case-sensitive in modern browsers and will still work:
Convert the value of APP_X_FRAME_OPTIONS to lower case, because Freescout only accepts
true
andfalse
in lower case, but in README.md it is document as upper case (TRUE
orFALSE
).https://github.com/freescout-help-desk/freescout/blob/master/app/Http/Middleware/FrameGuard.php#L16
All other values like ALLOW, DENY and ALLOW-FROM (deprecated by most browsers) will also be converted to lower case, but are not case-sensitive in modern browsers and will still work:
Chromium: https://github.com/chromium/chromium/blob/master/services/network/public/cpp/x_frame_options_parser.cc#L30
Firefox: https://github.com/mozilla/gecko-dev/blob/master/dom/security/FramingChecker.cpp#L165
WebKit https://github.com/WebKit/WebKit/blob/main/Source/WebCore/platform/network/HTTPParsers.cpp#L568