X-Frame-Options HTTP header

1.3

An HTTP header which indicates whether the browser should allow the webpage to be displayed in a frame within another webpage. Used as a defense against clickjacking attacks.

Further reading:

1. Can I use page for: X-Frame-Options HTTP header
2. X-Frame-Options Compatibility Test
3. MDN Web Docs - X-Frame-Options
4. OWASP Clickjacking Defense Cheat Sheet
5. Combating ClickJacking With X-Frame-Options - IEInternals
6. IE8 Security Part VII: ClickJacking Defenses - IEBlog