Project

General

Profile

Bug #8156

X-Frame-Option=SAMEORIGIN doesn't let my application be visualized inside iframe

Added by Alex Fedorov 5 months ago. Updated 5 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Target version:
-
Start date:
02/26/2021
Due date:
% Done:

0%

Estimated time:

Description

I call local server application inside iFrame. I see an empty iframe box in browser end error: "Refused to display 'http://localhost:8080/hello' in a frame because it set 'X-Frame-Options' to 'sameorigin'."
To make it work I had to remove line "response.addHeader("X-Frame-Options", "SAMEORIGIN");" from "void WebRenderer::serveBootstrap(WebResponse& response)" method.
It it a bug or there is some workaround besides code changing?


Files

hello.html (521 Bytes) hello.html Alex Fedorov, 02/26/2021 10:07 PM
#1

Updated by Korneel Dumon 5 months ago

This is a security feature, you can use widgetset to embed an application in other pages (like in your other question).

Also available in: Atom PDF