Configuring Talend Data Preparation to use X-Frame-Options - 7.3

Talend Data Management Platform Installation Guide for Linux

Version
7.3
Language
English (United States)
Product
Talend Data Management Platform
Module
Talend Activity Monitoring Console
Talend Administration Center
Talend Artifact Repository
Talend CommandLine
Talend Data Preparation
Talend Data Stewardship
Talend DQ Portal
Talend Identity and Access Management
Talend Installer
Talend JobServer
Talend Log Server
Talend Repository Manager
Talend Runtime
Talend SAP RFC Server
Talend Studio
Content
Installation and Upgrade

With the TPS-4173 patch, it is possible to embed the Talend Data Preparation application in a Web page using an i-frame without specific configuration.

However, if you want to use further options in your configuration, such as X-Frame-Options for example, you will need to modify some configuration files for Talend Data Preparation and Talend Identity and Access Management.

Consult your Talend support representative to know if the patch has been applied.

The different X-Frame-Options directives that you can set are the following:

Header Description
X-Frame-Options:DENY The deny directive completely disables the loading of the page in a frame, regardless of what site is trying to call it. This directive is helpful in order to lock down your site, but at the cost of many features.
X-Frame-Options:SAMEORIGIN The sameorigin directive allows the page to be loaded in a frame on the same origin as the page itself.
X-Frame-Options:ALLOW-FROM http://<hostname> The allow-from URI directive allows the page to only be loaded in a frame on the specified origin and or domain.