"Refused to display document because display forbidden by X-Frame-Options." Edit header

servlets iframe http-headers

10,012

If it's your page that is in the frame, then don't send X-Frame-Options at all. The default is to allow embedding.

If it's social network's page that is in the frame, then there's no way to disable it. The whole point of this is prevention of clickjacking via frames.

10,012

Author by

vctlzac

Updated on June 15, 2022

Comments

vctlzac almost 2 years
I am developing an application for a social network. When I try to access it I get an error in my browser:

Refused to display document because display forbidden by X-Frame-Options.

This social network uses Iframe. My question is, how do I change the header to solve this problem?

Considering Overcoming "Display forbidden by X-Frame-Options", in my servlet I tried command:
```
httpServletResponse.addHeader("X-FRAME-OPTIONS", "SAMEORIGIN" ); 
```
Considering http://www.rivercitystudio.com/blog/2011/09/google-maps-embedding-x-frame-options-change/ I've also tried adding in my url the following:
```
&output=embed
```
None of the two alternatives worked.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?

How to troubleshoot crashes detected by Google Play Store for Flutter app

Cupertino DateTime picker interfering with scroll behaviour

Why does awk -F work for most letters, but not for the letter "t"?

Flutter change focus color and icon color but not works

How to print and connect to printer using flutter desktop via usb?

Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0

Flutter Dart - get localized country name from country code

navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage

Android Sdk manager not found- Flutter doctor error

Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)

How to change the color of ElevatedButton when entering text in TextField

Related

Sending data via request header vs sending data via request body

Custom header not inserted in request in servlet

How do you add a http protocol header value in HttpServletRequest ？

How to get referrer source of iframe parent page?

HttpServletRequest and getHeader(): How to handle case insensitive headers properly?

How to add multiple "Set-Cookie" header in servlet response?

Java filter failing to set response headers

What header should be used for sending GZIP compressed JSON from Android Client to Server?

What's the proper way to set the Location header for an HTTP 201 response in a Java Servlet application

How to configure X-Frame-Options in Django to allow iframe embedding of one view?