'How to disable clickjacking in new universal login page in auth0
I have application which renders auth0 login in an iframe using classic universal page. However, I want to switch to new universal login page but want to disable clicjacking feature.
Is there any way to disable clickjacking in new universal login page?
Thanks.
Solution 1:[1]
as per Auth0 documentation
in the classic flow: set the following HTTP headers
X-Frame-Options: deny Content-Security-Policy: frame-ancestors 'none'
in the new universal flow:
The following action is not required if you are using the New Universal Login Experience because those headers are always set in that case
Sources
This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.
Source: Stack Overflow
| Solution | Source |
|---|---|
| Solution 1 | Akber Iqbal |