Over a million developers have joined DZone.

Grails Plugin: Servlet Filter to Add X-Frame-Options Response Header

DZone's Guide to

Grails Plugin: Servlet Filter to Add X-Frame-Options Response Header

· Java Zone
Free Resource

Download Microservices for Java Developers: A hands-on introduction to frameworks and containers. Brought to you in partnership with Red Hat.

The Grails plugin X-Frame-Options adds a new servlet filter to our Grails application. The servlet filter adds a response header. The response header name is X-Frame-Options and is used to defend against clickjacking. If we set the value to DENY our Grails application cannot be loaded inside aniframe. The value SAMEORIGIN allows only pages on the same site to include the application inside an iframe. We can also set the header valueALLOW-FROM {origin} to allow only pages on the {oring} website can include the application with an iframe. The plugin allows to set these values through configuration options in our grails-app/conf/Config.groovy file.

The code is hosted on GitHub and also contains the documentation.

Download Building Reactive Microservices in Java: Asynchronous and Event-Based Application Design. Brought to you in partnership with Red Hat


Published at DZone with permission of Hubert Klein Ikkink, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.


Dev Resources & Solutions Straight to Your Inbox

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.


{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}