Home Self-Service Portal - Community

Use Cireson Self-Service Portal as a source in iframe

we have created some dashboards in Cireson Portal and want to include them in an iframe in our Intranet Portal. however; we receive the following error each time the page that contains the iframe loads:

*************************
This content cannot be displayed in a frame
    
To help protect the security of information you enter into this website, the publisher of this content does not allow it to be displayed in a frame.
*************************
which it seems related to X-Frame Options configuration in Cireson Portal, that restrict it to be called from another website.

is there any way to bypass these X-Frame Options?

Answers

  • seth_coussensseth_coussens Member Ninja IT Monkey ✭✭✭✭
    We do this for security reasons, having to do with how we pass the windows auth credentials and such, you don't want that to sit in an iframe and be captured.

    You can take a look here for some ideas around this but I can't promote any of them: http://stackoverflow.com/questions/6666423/overcoming-display-forbidden-by-x-frame-options

  • Omar_Al-OmariOmar_Al-Omari Customer IT Monkey ✭

    Thanks seth_coussens, I understand your Concerns and will pass them to our development team.


  • sjohnsonsjohnson Member IT Monkey ✭
    There is actually a really easy way of doing this. If you use a reverse proxy you can strip out the X-Frame-Options header. We use NGINX to accelerate all of our sites to HTTP2 as well as a SSL off load engine.
Sign In or Register to comment.