springBoot springSecurty: x-frame-options deny禁止iframe調用

本文轉載自查看原文 2018-09-19 16:55 6970 spring cloud/ sprint boot

https://blog.csdn.net/whiteforever/article/details/73201586

項目中用到iframe嵌入網頁，然后用到springsecurity就被攔截了瀏覽器報錯 x-frame-options deny

原因是因為springSecurty使用X-Frame-Options防止網頁被Frame

.headers().frameOptions().disable()

解決辦法把x-frame-options disable即可

 protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .anyRequest().authenticated()
                .and()
                .formLogin().defaultSuccessUrl("/swagger-ui.html").failureUrl("/login") //登錄成功之后的跳轉
                .permitAll()
                .and()
                .headers().frameOptions().disable()
                .and()
                .logout().logoutSuccessUrl("/login")
                .permitAll();
    }

免責聲明！

本站轉載的文章為個人學習借鑒使用，本站對版權不負任何法律責任。如果侵犯了您的隱私權益，請聯系本站郵箱yoyou2525@163.com刪除。

猜您在找 springBoot springSecurty: x-frame-options deny禁止iframe調用 springBoot springSecurty x-frame-options deny 通過 Spring Security配置解決X-Frame-Options deny 造成的頁面空白 iframe調用問題 Django報錯 'X-Frame-Options' to 'deny'. springboot security 項目出現 in a frame because it set 'X-Frame-Options' to 'deny' iframe如何解決跨域——X-Frame-Options to deny報錯的問題 Spring boot X-Frame-Options 異常 a frame because it set 'X-Frame-Options' to 'deny' rstudio in a frame because it set 'X-Frame-Options' to 'deny' Spring Security 解決X-Frame-Options deny Django開發 X-Frame-Options to deny 報錯處理