public interface XFrameHandler extends SecurityPolicyHandler
<object>. Sites can use this to avoid click-jacking attacks, by ensuring that their content is not embedded into other sites. The added security is provided only if the user accessing the document is using a browser that supports
|Modifier and Type||Field and Description|
The page cannot be displayed in a frame, regardless of the site attempting to do so.
The page can only be displayed in a frame on the same origin as the page itself.
|Modifier and Type||Method and Description|
Creates a new handler that will add the
static final String DENY
static final String SAMEORIGIN
static XFrameHandler create(String action)
X-FRAME-OPTIONSheader to the current response.
action- a string value either
Copyright © 2023 Eclipse. All rights reserved.