Mitigate the Risk of Clickjacking with helmet.frameguard()
Hints
Hint 1
You want your app
to use
the helmet.frameguard()
method on each request.
Hint 2
Don’t forget to pass the appropriate configuration into the method.
Solutions
Solution 1 (Click to Show/Hide)
- In the
myApp.js
file addapp.use(helmet.frameguard({action: 'deny'}));
under the third instructions.
Note: Be sure to submit the link to the live demo of your project.