X-Frame-Options sameorigin

Question

HekMe opened this issue 6 years ago · comments

Ahoy.

Any ideas how to bypass X-Frame-Options sameorigin,
other than disabling it on destination server?

Thanks

Peter Širka · Answer 1 · Wed Feb 28 2018 23:07:47 GMT+0800 (China Standard Time)

Hi @hektor157,
you need to disable it on destination server... I think that this is the only way....

Hek · Answer 2 · Wed Feb 28 2018 23:31:37 GMT+0800 (China Standard Time)

As I thought.

Thanks for answer.

Jhonas Wernery · Answer 3 · Tue Dec 18 2018 23:42:47 GMT+0800 (China Standard Time)

You could also replace the header completely with the more flexible CSP header frame-ancestors