Skip to Content
Former Member
Jun 17, 2015 at 12:36 PM

Add X-FRAME-OPTIONS header to Response


Hi ,

As part of security , to prevent "Clickjacking" attack I would like to add X-FRAME-OPTIONS ="DENY" header to all responses from Hybris server .

I tried with below configuration in spring security config file but didnt work.

 <security:http><security:headers><security:frame-options policy="DENY"/></security:headers>

Any suggestion on adding headers to response?