Spring boot X-Frame-Options 異常 a frame because it set 'X-Frame-Options' to 'deny'

本文轉載自查看原文 2020-02-08 17:05 2185 Spring Boot

a frame because it set 'X-Frame-Options' to 'deny'

在spring security配置的位置添加

http.headers().frameOptions().disable();

    protected void configure(HttpSecurity http) throws Exception {
        http.headers().frameOptions().disable();
        http.authorizeRequests()
                .antMatchers("/login", "/logout", "/getVerifyCode", "/validateVerifyCode")
                .permitAll()
                .anyRequest().authenticated()

                .and()
                .formLogin()
                .loginPage("/login")
                .successForwardUrl("/success")
                .failureForwardUrl("/failure")

                .and()
                .logout()
                .logoutUrl("/logout")
                .invalidateHttpSession(true)

                .and()
                .csrf().disable();
    }

免責聲明！

本站轉載的文章為個人學習借鑒使用，本站對版權不負任何法律責任。如果侵犯了您的隱私權益，請聯系本站郵箱yoyou2525@163.com刪除。

猜您在找 in a frame because it set 'X-Frame-Options' to 'sameorigin' linux中上傳文件出現Refused to display 'http://***' in a frame because it set 'X-Frame-Options' to 'SAMEORIGIN'. springBoot springSecurty: x-frame-options deny禁止iframe調用 Django開發 X-Frame-Options to deny 報錯處理 X-Frame-Options X-frame-Options 設置 CORS & X-Frame-Options （一）安全防護：X-Frame-Options(點擊劫持) 低危漏洞- X-Frame-Options Header未配置 X-Frame-Options防止網頁放在iframe中