With X-Frame-Options header in response, Chrome logs 'ALLOW-FROM is not a recognized directive. The header will be ignored.'

Solution Unverified - Updated -

Issue

  • We are testing server access with Google Chrome after adding X-Frame-Options headers. Chrome logs an error like the following:
Invalid 'X-Frame-Options' header encountered when loading 'https://localhost/page': 'ALLOW-FROM  https://localhost' is not a recognized directive. The header will be ignored.

Environment

  • Google Chrome
  • Apache httpd

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In