Recensioni per Ignore X-Frame-Options Header
Ignore X-Frame-Options Header di ThomazPom
Risposta di ThomazPom
Replica dello sviluppatore
pubblicato il 5 anni faHello
Please add the folowing line in the "Websites allowed to frame" whitelist.
file://*
Should do the job
-> EDIT : I published a new version: 1.60 that fixes this architecural issue ! Please try it out :)
Please add the folowing line in the "Websites allowed to frame" whitelist.
file://*
Should do the job
-> EDIT : I published a new version: 1.60 that fixes this architecural issue ! Please try it out :)
57 recensioni
- Valutata 5 su 5di Alex z, 3 mesi fa
- Valutata 5 su 5di reigggg, 3 mesi faWorks for me and nothing bad in the source code, basically removes "content-security-policy" and "x-frame-options" from headers. Thanks!
- Valutata 5 su 5di KaffeeTrinker, 4 mesi fa
- Valutata 5 su 5di Ratheesh Pai, 8 mesi fa
- Valutata 5 su 5di kyuubicle, un anno fa
- Valutata 5 su 5di AV, un anno fa
- Valutata 5 su 5di KDV, 2 anni faThis extension's functionality definitely IS A MUST for browser core!!!
how that could happen they still haven't implemented it..? - Valutata 5 su 5di GDPlayer, 2 anni fa
- Valutata 5 su 5di GavinB, 2 anni fa
- Valutata 4 su 5di Utente Firefox 14913472, 2 anni fa
- Valutata 4 su 5di ModZero, 2 anni faWell, it's a solid extension that does what it says on the tin - unfortunately it's no longer enough, apparently. For example I tried to use it to enable previews of Twitter pages in pinboard.in's organize mode - and sure, the view itself loads, but it's broken, because other requests and scripts fail in ways I'm not motivated enough to investigate.
The web has changed. The header itself is incredibly useful - click jacking was a scourge, and sometimes really is. But the approach has its downsides. - Valutata 5 su 5di Utente Firefox 17064580, 3 anni faFonctionne parfaitement et extension OpenSource ! Merci
- Valutata 5 su 5di Utente Firefox 15957100, 3 anni fa
- Valutata 1 su 5di Jonathin, 3 anni faSimply doesn't work. I tried to use it in a HTML file with Google.com, and it still output the same frame is "denied by X-Frame-Options directive set to SAMEORIGIN“.
- Valutata 5 su 5di Maurice, 3 anni faVery clever. I am writing a web page that used to pop a new window with a framebusting web site. With this extension I can now put it in an iframe next to related data.
Quick question: Can I test in Javascript if this extension is installed, so if is not, do the legacy popout? - Valutata 5 su 5di Utente Firefox 16848195, 4 anni fa
- Valutata 5 su 5di Realife_Brahmin, 4 anni faWorked for me for paying my Netflix subscription.
Edit: Thanks a lot for the warning! I've disabled the 'Ignore X frame' from the extension's menu by default and would only enable it when I'm sure that I'm paying via the correct website.Replica dello sviluppatore
pubblicato il 4 anni faPlease care that when you disable x frame option you are exposed to « clickjacking » as it is designed to protect you from
Always ensure you realy are on netflix.com in the address bar when you type your personal and credit card informations or they may be stolen .
https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Testing/11-Client_Side_Testing/images/Clickjacking_description.png
Regards - Valutata 5 su 5di Kobayashi, 4 anni fa
- Valutata 5 su 5di will, 4 anni fa
- Valutata 5 su 5di Alejandro, 4 anni fa