Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
dev1232019-11-07 15:50:09
JavaScript
dev123, 2019-11-07 15:50:09

How to allow my site to open in iframe for specific sites?

I need to allow certain sites to open my site in an iframe. The rest are banned. I read that it seems to be possible to do this using Content-Security-Policy, but I don’t quite understand how. Maybe there are other ways?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
D
dev123, 2019-11-08
@dev123

Found a better answer.
X-Frame-Options is considered a deprecated header.
It is recommended to use this:
Content-Security-Policy "frame-ancestors 'self' https://www.example.org ";
where https://www.example.org is a site that allows opening an iframe with your site

Report
N
Nadim Zakirov, 2019-11-07
@zkrvndm

X-Frame-Options is not a panacea. Better hide the following JavaScript code on your site:

if (window != window.top) {
    document.body.innerHTML = '';
}

Similar questions
I
Ivan2019-10-09 12:29:44
If there is no prefork module setting in the Apache configuration, what is it guided by? 2Reply
B
BestJS2017-05-09 15:57:31
How to properly organize relationships between tables in PostgreSQL? 2Reply
I
Igor2019-10-10 16:36:25
Is there subline text on android? 1Reply
A
Albert Kazan2019-10-14 23:34:21
How to store date of birth in database? 4Reply
V
Vladimir Golub2019-10-16 13:10:04
How to check data types of values ​​passed to a function (prop-types)? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question