Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
dev1232019-11-07 15:50:09
JavaScript
dev123, 2019-11-07 15:50:09

How to allow my site to open in iframe for specific sites?

I need to allow certain sites to open my site in an iframe. The rest are banned. I read that it seems to be possible to do this using Content-Security-Policy, but I don’t quite understand how. Maybe there are other ways?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
D
dev123, 2019-11-08
@dev123

Found a better answer.
X-Frame-Options is considered a deprecated header.
It is recommended to use this:
Content-Security-Policy "frame-ancestors 'self' https://www.example.org ";
where https://www.example.org is a site that allows opening an iframe with your site

Report
N
Nadim Zakirov, 2019-11-07
@zkrvndm

X-Frame-Options is not a panacea. Better hide the following JavaScript code on your site:

if (window != window.top) {
    document.body.innerHTML = '';
}

Similar questions
K
Katie Divs2015-03-25 18:17:53
Why doesn't search work in Sublime 3? 2Reply
R
Ruslan Gayfutdinov2015-04-01 21:55:37
How and with what to track the work of employees? 4Reply
R
Rain Summers2015-04-07 12:24:11
phpstorm. How to disable non-disabled "Inspections: cannot resolve file"? 5Reply
V
Vell122016-06-19 01:04:52
How to make such a line at the top of the site? 4Reply
A
AUN2015-04-12 16:14:36
yii2 listview. How to filter? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question