Discussion

X-Frame-Options

Is there any setting available to prevent framing attacks or any way to set X-Frame-Options in the response headers?

**Moderation Team has archived post**

This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.

Comments

Keep up to date on this post and subscribe to comments

May 26, 2015 - 10:52am

Hi Nalin01..Please let me know if you have found the solution..I am also seraching for same option..Thanks

August 31, 2015 - 2:32pm

Pega uses X-Content-Security-Policy instead of X-Frame-Options by default. However, both can be used together.

See this PDN page for configuration options in the Pega 7 Platform:

 https://pdn.pega.com/sites/pdn.pega.com/files/help_v71/procomhelpmain.htm#rule-/rule-access-/rule-access-csp/main.htm?Highlight=csp

 

May 29, 2015 - 3:36am

thanks Kircheis for the infomation