For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!
using Application Express 20.1.0.00.13 I'm wishing to reference an apex report through an iFrame in a separate web site. I have set the Browser Security > Embed in Frames > Allow When trying to reference my report from anywhere I get Refused to display '<apex_url>' in a frame because it set 'X-Frame-Options' to 'sameorigin'. When inspecting the Response Header, it shows the following (images below): If Embed in Frames = Allow then the response is a single X-Frame-Options: SAMEORIGIN If Embed in Frames = Allow from sameorigin then the response is double X-Frame-Options: SAMEORIGIN If Embed in Frames = Deny then the response is one X-Frame-Options: SAMEORIGIN and one X-Frame-Options: DENY This seems like a bug... Anyone? Gussay