Skip to Content
avatar image
Former Member

How to add a custom header "x-frame-options: DENY" to a HCP HTLM5 Application?

Hi!!!,

I need to avoid Clickjacking and load the html5 application on a iframe. This can be done adding the custom header "x-frame-options: DENY".

I already add a custom header under the "headerWhiteList" setting on the neo-app.json, but didn't work.

Any thoughts ?

Thanks!

Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • avatar image
    Former Member
    Feb 06, 2017 at 02:22 PM

    Here is the solution,

    <script id='sap-ui-bootstrap'
        src='resources/sap-ui-core.js'
        data-sap-ui-frameOptions='deny'>
    </script>

    More information in the link below

    https://sapui5.hana.ondemand.com/#docs/guide/62d9c4d8f5ad49aa914624af9551beb7.html

    Add comment
    10|10000 characters needed characters exceeded