Do disable xframes add this in web.xml (if yeoman use yo web.xml). In tomcat we can see web.xml in /opt/tomcat/webapps/ROOT/WEB-INF

2/2/2017 - 3:48 AM

Do disable xframes add this in web.xml (if yeoman use yo web.xml). In tomcat we can see web.xml in /opt/tomcat/webapps/ROOT/WEB-INF

  <filter>
        <filter-name>httpHeaderSecurity</filter-name>
        <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
        <async-supported>true</async-supported>
        <init-param>
          <param-name>antiClickJackingEnabled</param-name>
          <param-value>true</param-value>
        </init-param>
        <init-param>
          <param-name>antiClickJackingOption</param-name>
          <param-value>DENY</param-value>
        </init-param>
       </filter>
       <filter-mapping>
                <filter-name>httpHeaderSecurity</filter-name>
                    <url-pattern>/*</url-pattern>
       </filter-mapping>

Cacher is the code snippet organizer for pro developers

We empower you and your team to get more done, faster

Do disable xframes add this in web.xml (if yeoman use yo web.xml). In tomcat we can see web.xml in /opt/tomcat/webapps/ROOT/WEB-INF