I want a html file to be loaded as iframe by any url, it's hosted by Github ..
This solution doesn't work :
<?php
header('X-Frame-Options: GOFORIT');
?>
And I suppose that we can't apply this one (mod_headers), so is there a way to do that ?
Double-click the HTTP Response Headers icon in the feature list in the middle. In the Actions pane on the right side, click Add. In the dialog box that appears, type X-Frame-Options in the Name field and type SAMEORIGIN in the Value field. Click OK to save your changes.
In the Default Web Site Home pane, under IIS, double-click the HTTP Response Headers icon. In the Actions pane, click Add. Control Manager displays a dialog box. In the Name field, type X-Frame-Options .
Support answer :
We block iframes to prevent clickjacking attacks against our users. We do this by sending the "X-Frame-Options: deny" header for every page. Clickjacking is a legitimate attack vector and at this time we do not have plans to remove the "X-Frame-Options: deny" header or allow exceptions for non-GitHub owned properties. It's unfortunate that such measures are necessary, but we have a responsibility to take all practical steps to protect our users.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With