发表新帖
发表新帖

How Can I Bypass the X-Frame-Options: SAMEORIGIN HTTP Header?

后端 未结
关注
5 1049
感动是毒
感动是毒 2020-11-27 03:18

I am developing a web page that needs to display, in an iframe, a report served by another company\'s SharePoint server. They are fine with this.

The page we\'re tr

5条回答
  • 星月不相逢
    星月不相逢 (楼主)
    2020-11-27 04:19

    The X-Frame-Options header is a security feature enforced at the browser level.

    If you have control over your user base (IT dept for corp app), you could try something like a greasemonkey script (if you can a) deploy greasemonkey across everyone and b) deploy your script in a shared way)...

    Alternatively, you can proxy their result. Create an endpoint on your server, and have that endpoint open a connection to the target endpoint, and simply funnel traffic backwards.

    0 讨论(0)
 看不清?
提交回复
热议问题