x-frame-options

Naresh Ede asked on February 8, 2018 12:11

Hi guys

Actually i had faced an issue while inserting iframe, the error is "x-frame-options set to same origin".

so i added CMSXFrameOptionsExcluded="/" in app settings, now i can able get the frame.

CMSXFrameOptionsExcluded="/" , Entering "/" turns off the protection completely , so i want to allow only from specific domain , How can i achieve that ?

Thanks in advance

Naresh Ede

Recent Answers


Michal Samuhel answered on February 8, 2018 17:28

Hi Naresh,

The "/" means that whole site path will be exclude. You can put path of your exact page into the quotation marks. So for example CMSXFrameOptionsExcluded="/Entering" will disable the header only for page on Entering path and keep it for every other page.

1 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.