Manual:$wgEditPageFrameOptions/fr

Cette variable détermine l'entête  à envoyer sur les pages sensibles aux attaques par abus de clic, comme les pages d'édition. Cela évite que ces pages soient affichées dans un cadre ou un iframe. Les options sont:


 * Ne pas permettre l'encadrement. This is recommended for most wikis.
 * Ne pas permettre l'encadrement. This is recommended for most wikis.


 * Allow framing by pages on the same domain. This can be used to allow framing within a trusted domain. This is insecure if there is a page on the same domain which allows framing of arbitrary URLs.
 * Allow framing by pages on the same domain. This can be used to allow framing within a trusted domain. This is insecure if there is a page on the same domain which allows framing of arbitrary URLs.


 * Allow all framing. This opens up the wiki to XSS attacks and thus full compromise of local user accounts. Private wikis behind a corporate firewall are especially vulnerable. This is not recommended.
 * Allow all framing. This opens up the wiki to XSS attacks and thus full compromise of local user accounts. Private wikis behind a corporate firewall are especially vulnerable. This is not recommended.