headers->has('X-Frame-Options')) { $response->headers->set('X-Frame-Options', 'SAMEORIGIN', false); } return $response; } }