Require POST method for '/checkframeoptionsheader'

This disables CORS for this path. It should not be usable by external websites.

Require POST method for '/checkframeoptionsheader'
This disables CORS for this path. It should not be usable by external websites.
64b89964 · Daniel Gerhardt · 45b407f4 · 64b89964
Commit 64b89964 authored 9 years ago by Daniel Gerhardt
--- a/src/main/java/de/thm/arsnova/controller/WelcomeController.java
+++ b/src/main/java/de/thm/arsnova/controller/WelcomeController.java
@@ -63,7 +63,7 @@ public class WelcomeController extends AbstractController {
 		return new HashMap<String, Object>();
 	}
-	@RequestMapping(value = "/checkframeoptionsheader", method = RequestMethod.GET)
+	@RequestMapping(value = "/checkframeoptionsheader", method = RequestMethod.POST)
 	@ResponseStatus(HttpStatus.OK)
 	public void checkFrameOptionsHeader(
 			@RequestParam(required = true) final String url,