1、修改tomcat放置目录下的conf/web.xml配置文件
添加如下配置:
<filter>
<filter-name>httpHeaderSecurity</filter-name>
<filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
<async-supported>true</async-supported>
<init-param>
<param-name>antiClickJackingOption</param-name>
<param-value>SAMEORIGIN</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>httpHeaderSecurity</filter-name>
<url-pattern>/*</url-pattern>
<dispatcher>REQUEST</dispatcher>
</filter-mapping>
2、重新启动tomcat
3、 测试配置是否起作用
把以下代码保存成.html文件,用浏览器打开,如果页面中不能加载指定网址的的页面,则表示配置成功:
<html>
<head>
</head>
<body>
<iframe height="1024px" width="768px" src="指定站点的地址"></iframe>
</body>
</html>