To restrict embedding Bold BI site into another application using an iFrame, we have to set the X-Frame-Options as Deny in the response header.
At present X-Frame-Options Header is not added in the Bold BI Application as iFrame based embedding is one of the types of embedding solutions in our Embedded BI to embed the dashboards into another application.
Follow the below step to add the X-Frame-Options in response headers of Bold BI server.
<system.webServer> <httpProtocol> <customHeaders> <add name="Access-Control-Allow-Origin" value="*" /> <add name="X-Frame-Options" value="Deny" /> </customHeaders> </httpProtocol> </system.webServer>
Since we have various distributed applications in Bold BI, We have to set the X-Frame-Options response header in the below deployed applications.
NOTE: By default, the Bold BI is deployed in “C:\BoldBI”.
|Identity Provider API||
|BOLD BI Server||
|BOLD BI Server API||