iframesand framesaround the border of the header X-Frame-Optionsto prevent clickjacking . You need to make sure that this parameter is set to SAMEORIGINor something that will allow the contents to be displayed inside the frame. you must be fine until it is DENY.
if you do not control the server of the page you are trying to create, then you are blocked by them for security reasons.
Jon b source
share