AWS::CloudFront::ResponseHeadersPolicy FrameOptions - Amazon CloudFormation
SyntaxProperties
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::CloudFront::ResponseHeadersPolicy FrameOptions

Determines whether CloudFront includes the X-Frame-Options HTTP response header and the header's value.

For more information about the X-Frame-Options HTTP response header, see X-Frame-Options in the MDN Web Docs.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "FrameOption" : String,
  "Override" : Boolean
}

YAML

  FrameOption: String
  Override: Boolean

Properties

FrameOption

The value of the X-Frame-Options HTTP response header. Valid values are DENY and SAMEORIGIN.

For more information about these values, see X-Frame-Options in the MDN Web Docs.

Required: Yes

Type: String

Pattern: ^(DENY|SAMEORIGIN)$

Update requires: No interruption

Override

A Boolean that determines whether CloudFront overrides the X-Frame-Options HTTP response header received from the origin with the one specified in this response headers policy.

Required: Yes

Type: Boolean

Update requires: No interruption