We are using JIRA 6.4.8 on Linux 2.6.32-696.1.1.el6.x86_64Application Server Container: Apache Tomcat/7.0.55.Is it possible to implement 'Content Security Policy' and Enable X-FRAME-Options header to implement clickjacking protection?
Hi Rilwan,
I saw this question asked a couple months ago in a post titled X-Frame-Options or Content-Security-Policy. The author found the solution on a webpage titled X-Frame-Options – How to Combat Clickjacking.
The page I'm referencing provides good information on X-Frame-Options Directives, Enabling X-Frame-Options Header, and information regarding caveats with X-Frame-Options Browser Support.
Cheers,
Branden
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Still have a question?
Get fast answers from people who know.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.