springBoot springSecurty: x-frame-options deny禁止iframe调用

springBoot springSecurty:  x-frame-options deny禁止iframe调用

https://blog.csdn.net/whiteforever/article/details/73201586

 

 

项目中用到iframe嵌入网页，而后用到springsecurity就被拦截了 浏览器报错  x-frame-options deny 

缘由是由于springSecurty使用X-Frame-Options防止网页被Frame

 

.headers().frameOptions().disable()

　　

解决办法把x-frame-options disable便可

 protected void configure(HttpSecurity http) throws Exception {
        http.authorizeRequests()
                .anyRequest().authenticated()
                .and()
                .formLogin().defaultSuccessUrl("/swagger-ui.html").failureUrl("/login") //登陆成功以后的跳转
                .permitAll()
                .and()
                .headers().frameOptions().disable()
                .and()
                .logout().logoutSuccessUrl("/login")
                .permitAll();
    }