You can set it in server config, virtual hosts, .htaccess or HTML
Here is an HTML example
<!-- dont open this page in an iframe --> <meta name="header" content="X-Frame-Options: DENY" >
And a server config example
# allow pages from this domain name to open pages in iframes, no one else Header always append X-Frame-Options SAMEORIGIN
This page explains all
No comments:
Post a Comment