Skip to Content
author's profile photo Former Member
Former Member

X-Frame-Options on storefront set to DENY on Hybris 6.2

The X-Frame-Options on store front response is set to DENY although in project.properties its set to SAMEORIGIN, due to this the iframe doesnt render in another window and preview/live edit is not working on cmscockpit and smart edit.

setting 'X-Frame-Options=SAMEORIGIN' to prevent clickjacking attacks

ss.filter.header.X-Frame-Options=SAMEORIGIN

Add a comment
10|10000 characters needed characters exceeded

Related questions

1 Answer

  • Posted on Sep 08, 2017 at 10:25 AM
    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.