glide.set_x_frame_options

ServiceNow property description:

Enable this property to set the X-Frame-Options response header to SAMEORIGIN for all UI pages. The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page in a <frame> or <iframe>. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites. https://developer.mozilla.org/en/the_x-frame-options_response_header

Attributes

Sys ID: 6a80a123ff2010003061fe51c17f9dc6
Type: true | false
Application: Global
Default value: true

AI generated property description:

The ServiceNow property `glide.set_x_frame_options` is used to control the `X-Frame-Options` HTTP header, which helps protect against clickjacking attacks by specifying whether a browser should be allowed to render a page in a ``, ``, or `<object>`. According to the documentation, setting this property to `SAMEORIGIN` allows the page to be displayed in a frame on the same origin as the page itself. If set to `DENY`, it prevents the page from being displayed in a frame altogether. This property enhances security by ensuring that only trusted sources can embed the ServiceNow instance's content. The default value is `SAMEORIGIN`, which balances security and functionality by allowing framing within the same domain.</p><a href='https://docs.servicenow.com/bundle/washingtondc-platform-security/page/administer/security-center/reference/sc-x-frame-options-sameorigin.html' target='blank'><p>Source</p></a></div><a href='https://sysproperties.do/com.glide.cs.embed.xframe_options' class='related-link'>Related property: com.glide.cs.embed.xframe_options</a></div></main><div id='footer'></div></div><script src='../1_static/scripts.js'></script></body></html>