soubhagya
Reputation: 806
Refused to display in a frame because it set 'X-Frame-Options' to 'deny' in django application
Error in browser console:
Refused to display 'http://74.207.232.194/media/edas/881063.html?&output=embed' in a frame because it set 'X-Frame-Options' to 'deny'.
My backend url http://74.207.232.194 which is a django application.
In side my django application some html files is there inside media folder.
I am trying to access and embel the htmls from backend media folder to my react.js application.
But, It is not working with above error.
Please have a look
Upvotes: 0
Views: 649
Answers (1)
Skeptic
Reputation: 1564
You should try to change the value in your django settings by using:
X_FRAME_OPTIONS = 'ALLOW-FROM http://74.207.232.194'
Also it would be a good idea to use a Content Security Policy
add_header Content-Security-Policy frame-ancestors 'self' 74.207.232.194 *.74.207.232.194;
Upvotes: 0
Related Questions
- Django nginx Refused to display in a frame because it set 'X-Frame-Options' to 'SAMEORIGIN'
- How to set X-FRAMES_OPTIONS to any other value than deny for Django media files embedding purposes?
- Why xframe_options_exempt doesn't work for my Django view?
- How to fix Refused to display in a frame because it set 'X-Frame-Options' to 'deny'
- Refused to display 'URL' in a frame because it set 'x-frame-options' is set to 'deny'. But i am not using iFrame
- Refused to frame '' because it violates the following Content Security (Empty Frame URL)
- Django iframe load denied by xframe options even after view is set to @xframe_options_exempt
- Django refused to display YouTube video in a iframe because it set 'X-Frame-Options' to 'SAMEORIGIN'
- Where is X-FRAME-OPTIONS: DENY coming from on Django site via nginx?
- X-Frame Options set as "DENY DENY"