I have two internal sites. I'm trying to show one's content in the iframe of the other site. However I'm getting this message: "This content cannot be displayed in a frame." I've read the reason I'm getting this message but, I would like to bypass it since the sites are internal and I'm not concerned with someone trying to hijack my users. I couldn't find a way to bypass it after searching the internet, but feel like it should be possible because the rest of the message seems to hint at it.
"To help protect the security of information you enter into this website, the publisher of this content does not allow it to be displayed in a frame."
Since I'm the publisher how can I allow it to be displayed in the frame? Thanks!
The X-Frame-Options is defined in the Http Header and not in the
<head>
section of the page you want to use in the iframe.Accepted values are: DENY, SAMEORIGIN and ALLOW-FROM "url"
use
<meta http-equiv="X-Frame-Options" content="allow">
in the one to show in the iframe to allow it.Use
target="_top"
attribute in anchor tag that will really work.