I want to add clickjacking protection to my web site using X-Frame-Options. Several pages

Question

0

Asked: June 15, 20262026-06-15T12:58:58+00:00 2026-06-15T12:58:58+00:00

I want to add clickjacking protection to my web site using X-Frame-Options. Several pages

0

I want to add clickjacking protection to my web site using X-Frame-Options.
Several pages in my web site are shown in a frame so I want to protect them but at the same time present them properly. From what I understand I need to use the SAMEORIGIN option in the X-Frame-Options value. But what exactly does SAMEORIGIN means? Does it mean the same website? The offical description I found is not very clear regarding what does it mean that 2 pages share the same ‘origin’…
Can someone here help me with this?
Thanks!

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-15T12:59:00+00:00

Editorial Team

2026-06-15T12:59:00+00:00Added an answer on June 15, 2026 at 12:59 pm

An “origin” is a website’s scheme+host+port. That is, http://example.com/ has an origin of (http, example.com, 80). https://example.com/ is a different origin, namely (https, example.com, 443).

Setting the x-frame-options header to SAMEORIGIN for a page served from http://example.com/ means that only other pages on http://example.com/ would be able to load that page in a frame.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I want to add clickjacking protection to my web site using X-Frame-Options. Several pages

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply