Content in iFrame in Mendix blocked because of X-Frame-Options set to sameorigin.
I’m trying to embed an iframe in Mendix 9 with the IFrame Component to show a dashboard from an external BI-tool (Qlik Sense). The content in de frame is blocked by the browser because the user is redirected by Qlik Sense to an external identity provider (Okta) for authentication. The reason seems to be the x-frame-option set to ‘sameorigin’. How can I resolve this issue?
Steven Samuels Brusse
The header is set by Qlik. So you keed to change this on Qlik side. But I am not sure if this fixes your problem. When it is allowed to embed the site in an iframe, I assume you will still get a redirection (in the iframe) if the user is not yet authenticated.