Makes detection of x-frame-options value case insensitive

In other words, sameorigin == SAMEORIGIN == saMeOriGIN This is in line with the spec for the header: https://tools.ietf.org/html/rfc7034
4 years ago · b8f104fd00
parent b018a6637e
commit b8f104fd00
1 changed files with 1 additions and 1 deletions
--- a/bin/.bin/webtest/analyse-headers
+++ b/bin/.bin/webtest/analyse-headers
@ -118,7 +118,7 @@ of old browsers\n\n"

 test_x-frame-options(){
 	local value
-	value="$(echo "$1" | cut -d ':' -f 2 | trimWhitespace)"
+	value="$(echo "$1" | cut -d ':' -f 2 | trimWhitespace | tr '[:lower:]' '[:upper:]')"
 	case "$value" in
 		"SAMEORIGIN"|"DENY") return 0 ;;
 		"ALLOW-FROM"*)