Allow Iframe on Allowed site

  • Resolved aunpric

    (@aunpric)


    6 years, 11 months ago

    <IfModule mod_headers.c>
# Using DENY will block all iFrames including iFrames on your own website
# Header set X-Frame-Options DENY
# Recommended: SAMEORIGIN - iFrames from the same site are allowed - other sites are blocked
# Block other sites from displaying your website in iFrames
# Protects against Clickjacking
Header always append X-Frame-Options SAMEORIGIN
# Protects against Drive-by Download attacks
# Protects against MIME/Content/Data sniffing
Header set X-Content-Type-Options nosniff
</IfModule>

    Right now im using this to prevent iframe can you tell me How can i add that to show iframe on allowed site like stumbleupon

    if you can provide another code that would be awesome

Viewing 10 replies - 1 through 10 (of 10 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, do you also happen to have the following feature
    Enable iFrame Protection: enabled in the plugin? This can be located under WP Security -> Miscellaneous -> Frames? If you do can you disable this feature.

    Also can you let us know where are you adding the above code?

    Thank you

    Thread Starter aunpric

    (@aunpric)

    Im adding code in htaccess

    and i want to use iframe protection but i wanted to allow some site to display my site in iframe

    Can You Help me? ????

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, at present your best option is to disable this feature in the plugin. Make sure you add your code outside the following AIOWPS tags.

    # BEGIN All In One WP Security
    # END All In One WP Security

    I have also sent a message to the developers to investigate further your request.

    Thank you

    Thread Starter aunpric

    (@aunpric)

    ok i will remove that code

    and i add my code outside of aiowps tag

    I can remove this code and start using yours just Solve this iframe issue

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, are you saying that your issue is resolved simply by using our plugins feature and removing your code? If that is the case, then perhaps you might want to mark this issue as resolved.

    Regards

    Thread Starter aunpric

    (@aunpric)

    No im saying

    here is the story i used itheme security back then once i ran into an problem when switching my site to Https and i used their plugin to solve mixed content problem but it make my site goes down then i find out the lack of support so i switch to all in one security for it great set of feature and support
    so The ubove code is from their plugin and i removed it and start using your Plugin setting but the problem it block on every single site
    but stumbleupon also so our site in iframe and great souce of traffic so i want to allow them to show my site in iframe

    how can i do it

    Thread Starter aunpric

    (@aunpric)

    stumbleupon also show *

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Thank you for clarifying your issue further. Unfortunately I am not the developer of this great plugin. That is why I submitted a message to the developers about your issue. And as I mentioned before your best solution for now is to disable this feature in our plugin until a solution is found.

    That is your best option for now.

    Kind regards

    Thread Starter aunpric

    (@aunpric)

    ok looking for an answer from developer

    enabling iframe protection but allowing a specific url would be great for me

    i want to allow a specific payment processor (for woocommerce) to use iframe for their payment window (using hosted fields) but disallow all other iframe attempts

Viewing 10 replies - 1 through 10 (of 10 total)
  • The topic ‘Allow Iframe on Allowed site’ is closed to new replies.