How can I set 'X-Frame-Options' on an iframe?
If I create an iframe like this:
var dialog = $('<div id="' + dialogId + '" align="center"><iframe id="' + frameId + '" src="' + url + '" width="100%" frameborder="0" height="'+frameHeightForIe8+'" data-ssotoken="' + token + '"></iframe></div>').dialog({
How can I fix the following error with JavaScript?
Refused to display
'https://www.google.com.ua/?gws_rd=ssl'in a frame because it set 'X-Frame-Options' to 'SAMEORIGIN'.
Solution
You can't set X-Frame-Options on the iframe. That is a response header set by the domain from which you are requesting the resource (google.com.ua in your example). They have set the header to SAMEORIGIN in this case, which means that they have disallowed loading of the resource in an iframe outside of their domain. For more information see The X-Frame-Options response header on MDN.
A quick inspection of the headers (shown here in Chrome developer tools) reveals the X-Frame-Options value returned from the host.
- Converting enums to array of values (Putting all JSON values in an array)
- Calculate the date yesterday in JavaScript
- Embedding youtube video "Refused to display document because display forbidden by X-Frame-Options"
- ExpressJs in undefined value get (to show [object])
- Ag-grid cell editors with dynamic Parameters: use global variable
- How to pass state.params in react-native
- I want to get option selected with js?
- body data not sent in axios request
- How to track onchange as-you-type in input type="text"?
- This weird piece of code I always see in Javascript
- Generate random string/characters in JavaScript
- Why does `+ ! {} [true]` evaluate to 1?
- Electron - Is there a way to run code after throwing an error?
- Why does a function declared inside a conditionally-executed block appear to exist before the block is entered?
- how many times a value is repeated in an array of objects
- Why does naming a function expression not make the name accessible within the scope, but still possible to delete?
- The assigned innerHTML results in a different structure
- Which is preferred: inline function expressions or stand-alone function declarations?
- How to pass inline style with props in react js?
- Add tab with active and ng-repeat in uib-tab
- Detect backspace and del on "input" event?
- Detecting arrow key presses in JavaScript
- How can I add an event for a one time click to a function?
- Applying InputAdornment to MUI AutoComplete removes the options list
- How to have a pop-up for a download on my navbar?
- How to fix dark mode background color flicker in NextJS?
- Why would a JavaScript function check if `this` is `instanceof` that same function?
- Why my function in Javascript is not working?
- Not able to change the title with metadata when using 'use client' in Next.js
- Extract hostname name from string