Disable x-frame-options in MVC3 or IIS 7.5

StackOverflow https://stackoverflow.com/questions/23085306

I want to disable x-frame-options in my website, I want that no other website can show my webpages in their web pages using iframes. My website is made in ASP.net MVC3 and hosted in IIS 7.5.

有帮助吗?

解决方案

There are a bunch of ways to go about this. But one of the easiest is adding <customHeaders> section to the web.config and it will append that header to each request.

<configuration>
   <system.webServer>
      <httpProtocol>
         <customHeaders>
            <add name="X-Frame-Options" value="DENY" />
         </customHeaders>
      </httpProtocol>
   </system.webServer>
</configuration>
许可以下: CC-BY-SA归因
不隶属于 StackOverflow
scroll top