How Can I Bypass the X-Frame-Options: SAMEORIGIN HTTP Header?

Posted by Daniel Coffman on Stack Overflow See other posts from Stack Overflow or by Daniel Coffman
Published on 2010-05-06T17:26:29Z Indexed on 2010/05/06 17:28 UTC
Read the original article Hit count: 1986

I am developing a web page that needs to display, in an iframe, a report served by another company's SharePoint server. They are fine with this.

The page we're trying to render in the iframe is giving us X-Frame-Options: SAMEORIGIN which causes the browser (at least IE8) to refuse to render the content in a frame.

First, is this something they can control or is it something SharePoint just does by default? If I ask them to turn this off, could they even do it?

Second, can I do something to tell the browser to ignore this http header and just render the frame?

© Stack Overflow or respective owner

Related posts about ASP.NET

Related posts about http