Skip to main content
ExLibris

Knowledge Assistant

BETA
 
Voyager

 

Ex Libris Knowledge Center
  1. Search site
    Go back to previous article
    1. Sign in
      • Sign in
      • Forgot password
  1. Home
  2. Voyager
  3. Knowledge Articles
  4. How to turn on 'No Frame Filter' in WebVoyage to prevent clickjacking

How to turn on 'No Frame Filter' in WebVoyage to prevent clickjacking

  1. Last updated
  2. Save as PDF
  3. Share
    1. Share
    2. Tweet
    3. Share
  1. Overview
  2. Goal
    1. First Step
  3.  

Overview

- The 'No Frame Filter' option in WebVoyage determines if WebVoyage can be displayed with an iframe.

- Configuring 'No Frame Filter' to "DENY" will secure the WebVoyage from iframe related vulnerabilities e.g. "Clickjacking"

- Third-party security scans may idenity WebVoyage as being vulnerable to "Clickjacking"and may recommend configuring the "X-Frame-Options" header, however if the 'No Frame Filter" option is configured to DENY, then this is unneccesary, and is a false-positive.

Goal

- Configure the 'No Frame Filter for WebVoyage

 

- Altered the mode parameter value for 'No Frame Filter' in web.xml

First Step

Log in to the Voyager server and open the WebVoyage web.xml file in a text editor. This file is located at : /m1/voyager/xxxdb/tomcat/vwebv/context/vwebv.

 

View article in the Exlibris Knowledge Center
  1. Back to top
    • How to troubleshoot run-time errors 65099 and 440
    • How to uninstall Oracle ODBC Client completely
  • Was this article helpful?

Recommended articles

  1. Language
    English
  2. Tags
    This page has no tags.
  1. © Copyright 2025 Ex Libris Knowledge Center
  2. Powered by CXone Expert ®
  • Term of Use
  • Privacy Policy
  • Contact Us
2025 Ex Libris. All rights reserved