Hi,
I need to overlay "/libs/cq/xssprotection/config.xml" to the project and add oembed inserts in config file for iframe in embed component. Since the webpage used in my project is not added to the iframesrc. How can I achieve this?
I added the website here, but still the src was shown in iframe.
"<regexp name="iframesrc" value="^(http:|https:)?\/\/(www\.)?(((youtube|youtube-nocookie|vimeo|player\.vimeo|dailymotion|instagram|tumblr|twitter|wordpress|facebook|wikipedia|stackoverflow)(\.com))|(flickr\.com|flic\.kr))\/([A-Za-z0-9]).*"/>"
Thank you
Solved! Go to Solution.
Views
Replies
Total Likes
@keerthana_hn Steps:
It's important that each time you install an AEM upgrade (CFP or SP), to check that your customizations are still valid.
If you have changed /libs/sling/xss/config.xml to /apps/sling/xss/config.xml a few versions ago, then in the meantime the original file under /libs may have changed while your customized version under /apps did not. It may be completely out of date!
Here's what you should do:
Hope this helps!
Thanks
@keerthana_hn Steps:
It's important that each time you install an AEM upgrade (CFP or SP), to check that your customizations are still valid.
If you have changed /libs/sling/xss/config.xml to /apps/sling/xss/config.xml a few versions ago, then in the meantime the original file under /libs may have changed while your customized version under /apps did not. It may be completely out of date!
Here's what you should do:
Hope this helps!
Thanks
Hi @ShaileshBassi : I tried overlaying this file, it seems to be working fine on lower environments but file is not getting created in stage/prod. Any other configuration we need to add apart from overlaying this.
Views
Replies
Total Likes
Thanks, @ShaileshBassi.
Hi @keerthana_hn,
following the above solution might serve your purpose for sure. However, it is riskier on modifying this particular config. Please go through this Security Document
Thanks,
Sravan
Views
Replies
Total Likes
Views
Likes
Replies
Views
Likes
Replies