iframe not working


Collective access can be reached normally however, when I try to embed in iframe it is not possible.

I get the error message "Refused to display 'http://ipaddress/' in a frame because it set 'X-Frame-Options' to 'sameorigin'.

The apache security.conf file has commented out the X-Frame-Options", "SAMEORIGIN" part

However in index.php the following line can be found:

$resp->addHeader("X-Frame-Options", "SAMEORIGIN");

How can I change this behavior? Should I edit index.php and replace "sameorigin" ? Or it this a security problem?

Thank you!


Sign In or Register to comment.