XF 1.4 X-Frame-Options

[Slind]

Hi there,
I need to modify the X-Frame-Options option to allow one domain to embed forum threads. I couldn't find this option in the ACP. How do I go about this?

 

[Optic]

Hi @Slind ,

Try adjusting this option in config.php:

$config['enableClickjackingProtection'] - default: true
When enabled, this option prevents clickjacking attacks by placing your forum in an iframe and tricking the user into clicking something. However, this can also disable valid uses of iframe embedding. Disable this only if you understand the implications.

https://xenforo.com/help/config-php-options/

 

[Slind]

Ahh thanks. Any idae on how I can change that to "ALLOW-FROM"?

 

[Optic]

AFAIK that option only allows true or false..