2019独角兽企业重金招聘Python工程师标准>>> tomcat设置响应头:X-Frame-Options,默认是deny 【X-Frame-Options:ALLOW-FROM https://baidu.com/ 】 在web.xml,新增一下内容,重启即可 <filter> <filter-name>httpHeaderSecurity</filter-name> <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class> <init-param> <param-name>antiClickJackingEnabled</param-name> <param-value>true</param-value> </init-param>