HTTP Security Headers in .htaccess prevents Edit with Elementor

  • i inserted the standard security code HTTP Security Headers. then, in WP i click “Edit with Elementor” and my webpage did not render. and it wouldn’t render in safe mode. i then removed the HTTP Security Headers and Edit with Elementor rendered as it normal does.

    i suppose i could experiment and remove one line at a time; however, my question is, so how are can elementor’s users insert HTTP Security Headers and have elementor work?
    it can’t be true that all elementor users do not have HTTP Security Headers. also, please speak to the code below or alternate array of security headers that work; ‘click here to read more about it’ virtually NEVER answers a question. i’m sure a knowledgeable person has necessary HTTP Security Headers (or, maybe elementor does?).

    
<ifModule mod_headers.c>
Header set Strict-Transport-Security “max-age=31536000” env=HTTPS
Header set X-XSS-Protection “1; mode=block”
Header set X-Content-Type-Options nosniff
Header set X-Frame-Options DENY
Header set Referrer-Policy: no-referrer-when-downgrade
</ifModule>
Viewing 1 replies (of 1 total)

  • Hi Peter,

    Got the same issue with Elementor and Security Headers. I found this solution on Elementor’s website, that worked for me :

    https://elementor.com/help/cant-edit-with-elementor/#grayendless

    “The gray page can be also due to?X frame restrictions?and?Cross-origin?issues. You can see if it is the issue by checking the error messages of your browser console (to do it, click right on your mouse, select “inspect” and then “console”. Error messages are written in red). In this case, you will have to change?the X-Frame-Options from DENY to SAMEORIGIN. This has to be solved by your hosting company.”

Viewing 1 replies (of 1 total)
  • The topic ‘HTTP Security Headers in .htaccess prevents Edit with Elementor’ is closed to new replies.

Tags