springBoot springSecurty: x-frame-options deny禁止iframe调用

本文转载自查看原文 2018-09-19 16:55 6970 spring cloud/ sprint boot

https://blog.csdn.net/whiteforever/article/details/73201586

项目中用到iframe嵌入网页，然后用到springsecurity就被拦截了浏览器报错 x-frame-options deny

原因是因为springSecurty使用X-Frame-Options防止网页被Frame

.headers().frameOptions().disable()

解决办法把x-frame-options disable即可

 protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .anyRequest().authenticated()
                .and()
                .formLogin().defaultSuccessUrl("/swagger-ui.html").failureUrl("/login") //登录成功之后的跳转
                .permitAll()
                .and()
                .headers().frameOptions().disable()
                .and()
                .logout().logoutSuccessUrl("/login")
                .permitAll();
    }

免责声明！

本站转载的文章为个人学习借鉴使用，本站对版权不负任何法律责任。如果侵犯了您的隐私权益，请联系本站邮箱yoyou2525@163.com删除。

猜您在找 springBoot springSecurty: x-frame-options deny禁止iframe调用 springBoot springSecurty x-frame-options deny 通过 Spring Security配置解决X-Frame-Options deny 造成的页面空白 iframe调用问题 Django报错 'X-Frame-Options' to 'deny'. springboot security 项目出现 in a frame because it set 'X-Frame-Options' to 'deny' iframe如何解决跨域——X-Frame-Options to deny报错的问题 Spring boot X-Frame-Options 异常 a frame because it set 'X-Frame-Options' to 'deny' rstudio in a frame because it set 'X-Frame-Options' to 'deny' Spring Security 解决X-Frame-Options deny Django开发 X-Frame-Options to deny 报错处理