diff options
| author |   jegadeeshbabu3 <jegadeesh.babu@att.com> | 2020-08-18 18:04:38 +0530 |
|---|---|---|
| committer | jegadeeshbabu3 <jegadeesh.babu@att.com> | 2020-08-18 18:05:59 +0530 |
| commit | 901a450ade57f991ad05acf66baf37cfd521ea02 (patch) | |
| tree | 823ad7dfa515ebf1e9c744db3710d3ff4f9c7c90 | |
| parent | d8a0539b3dfaa60bd9c809bcf801262b3ce282a4 (diff) | |
Changed X-Frame attribute value to sameorigin
Tweaked response header
Issue-ID: PORTAL-980
Change-Id: I659be73675f36027f54b2a65d5b99013d74a43ca
Signed-off-by: jegadeeshbabu3 <jegadeesh.babu@att.com>
| -rw-r--r-- | ecomp-portal-BE-common/src/main/java/org/onap/portalapp/config/ExternalSecurityConfig.java | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/config/ExternalSecurityConfig.java b/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/config/ExternalSecurityConfig.java index 9f125b75..ae08a34b 100644 --- a/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/config/ExternalSecurityConfig.java +++ b/ecomp-portal-BE-common/src/main/java/org/onap/portalapp/config/ExternalSecurityConfig.java @@ -69,6 +69,11 @@ public class ExternalSecurityConfig extends WebSecurityConfigurerAdapter { return false; } }; + + + //Added this code to enable Raptor charts within Iframe + http.headers().frameOptions().sameOrigin(); + if(MusicUtil.isMusicEnable()) http.csrf().csrfTokenRepository(MusicCookieCsrfTokenRepository.withHttpOnlyFalse()).requireCsrfProtectionMatcher(csrfRequestMatcher); else |