Forum Discussion

Cirrus

Aug 17, 2020

Replace X-Frame-Options value

I need help with my syntax because it is not identifying and changing the text/value as expected. The response header in question is: X-FRAME-OPTIONS: ALLOW-FROM https://my.identitymanager.com:84...

Dario_Garrido

Noctilucent

Aug 17, 2020

Hello Ottley.

Try this instead

HTTP::header replace X-Frame-Options "ALLOW-FROM https://biz.identitymanager.com:8443"

Regards,

Dario.

Dario_Garrido

Noctilucent

Aug 18, 2020

Or even this:

set XFO [string map -nocase {"my.identitymanager.com" "biz.identitymanager.com"} [HTTP::header value X-FRAME-OPTIONS]]
HTTP::header remove X-FRAME-OPTIONS
HTTP::header insert X-Frame-Options $XFO

Regards,

Dario.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Replace X-Frame-Options value

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

Set x-frames-options header values depending on URI

Removing x-frame-options header from response when using APM

Clickjacking Protection Using X-FRAME-OPTIONS Available for Firefox

ADFS Proxy Replacement on F5 BIG-IP

Configuring X-Frame-Options Allow-From

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS