How to add HTTP Header Response X-Frame-Options:SAMEORIGIN from OWA published via Forefront TMG 2010 to stop Clickjacking

How to add HTTP Header Response X-Frame-Options:SAMEORIGIN from OWA published via Forefront TMG 2010 to stop Clickjacking. I have put the IIS setting X-Frame-Options:SAMEORIGIN on my Internal CAS Server. However as the OWA page is published through
Forefront TMG 2010, the iFrame tag is not blocked when the page is first opened. Only when you login with your credentials to the OWA page inside the frame and the page reaches IIS on the Internal CAS it gets blocked. I want to block it in the first
instance when it is opened from TMG.

Hi,
Thank you for the post.
To modify the http header, please refer to this blog:
http://tmgblog.richardhicks.com/2009/03/27/using-the-isa-http-filter-to-modify-via-headers-and-prevent-information-disclosure/
Regards,
Nick Gu - MSFT

Similar Messages

How to handle http 302 response in OEG

how to handle http 302 response.
The URL has moved <a href="https://............................
I am using "Connect to URL" and "Reflect message" filters and I am getting http 302 response. In the http esponse body/content I have the "The URL has moved <a href="https://............................"
How to connect to this url.
Thank you very much for your help.

hi
I took your advise on the second approach and added new filter to catch 302 response and read the new URL from Location. Here is the flow.
Connect to URL --> Is HTTP CODe =302 --> Retrieve Location from Http Header- Rewrite URL - Dynamic Router - Connection
I am getting a new error as below. I verified the certificates using the below open ssl comands and added them to the certificate store in OEG. The error comes from the Redirect URL which is cs12.salesforce.com
C:\Program Files\GnuWin32\bin>openssl s_client -connect test.salesforce.com:443 -showcerts
and
C:\Program Files\GnuWin32\bin>openssl s_client -connect cs12.salesforce.com:443 -showcerts
thank you for your time and help.
ERROR 06/May/2012:00:22:23.125 [14e0] nested fault: SSL protocol error
error:140CF086:SSL routines:SSL_VERIFY_CERT_CHAIN:certificate verify fai
led
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate veri
fy failed:
java.lang.RuntimeException: SSL protocol error
error:140CF086:SSL routines:SSL_VERIFY_CERT_CHAIN:certificate verify fai
led
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate veri
fy failed
at com.vordel.dwe.ConnectionCache.getConnection(Native Method)
at com.vordel.circuit.net.ConnectionProcessor$State.tryTransaction(Conne
ctionProcessor.java:482)
at com.vordel.circuit.net.ConnectionProcessor.invoke(ConnectionProcessor
.java:650)
at com.vordel.circuit.InvocationEngine.invokeFilter(InvocationEngine.jav
a:154)
at com.vordel.circuit.InvocationEngine.invokeCircuit(InvocationEngine.ja
va:43)
at com.vordel.circuit.InvocationEngine.processMessage(InvocationEngine.j
ava:229)
at com.vordel.circuit.SyntheticCircuitChainProcessor.invoke(SyntheticCir
cuitChainProcessor.java:36)
at com.vordel.dwe.http.HTTPPlugin.invokeDispose(HTTPPlugin.java:290)
at com.vordel.dwe.http.HTTPPlugin.invoke(HTTPPlugin.java:131)

How to add a header line to excel sheet?

Hi Guru's
I have download the scheduling agreement report in a excel sheet, I want to know how to add the header line to that excel sheet.

Hi
See this sample code:
Tables : zacg_cca,zacg_exsh.
data: P_file like RLGRAP-FILENAME.
Data: Begin of it_header occurs 0,
Header(15) ,
end of it_header.
Data : begin of it_final occurs 0,
ccode type zacg_cca-ccode,
mat_cd type zacg_cca-mat_cd,
ingr_desc type zacg_cca-ingr_desc,
conc type zacg_cca-conc,
quantity type zacg_cca-quantity,
percqty type zacg_cca-percqty,
flag ,
APP_DATE type zacg_cca-app_date,
rsamnos type zacg_cca-rsamnos,
end of it_final.
SELECTION-SCREEN : BEGIN OF BLOCK blk WITH FRAME TITLE text-000.
select-options : s_Date for zacg_cca-app_date.
SELECTION-SCREEN : END OF BLOCK blk.
it_header-Header = 'Samp_code'.
Append it_header.
it_header-Header = 'Mat_code'.
Append it_header.
it_header-Header = 'Ingr_Desc'.
Append it_header.
it_header-Header = 'Conc'.
Append it_header.
it_header-Header = 'Quan'.
Append it_header.
it_header-Header = 'Perc'.
Append it_header.
it_header-Header = 'Flag'.
Append it_header.
it_header-Header = 'Date'.
Append it_header.
it_header-Header = 'Rsamnos'.
Append it_header.
it_header-Header = 'Mat_code'.
Append it_header.
select ccode
mat_cd
ingr_desc
conc
quantity
percqty
app_date
rsamnos
from zacg_cca into corresponding
fields of table
it_final where zacg_cca~app_date in s_date.
loop at it_final.
it_final-flag = 'T'.
modify it_final.
it_final-quantity = it_final-quantity * 2 .
Modify it_final.
endloop.
CALL FUNCTION 'MS_EXCEL_OLE_STANDARD_DAT'
EXPORTING
FILE_NAME = 'E:\IT\P_FILE'
CREATE_PIVOT = 0
DATA_SHEET_NAME = ' '
PIVOT_SHEET_NAME = ' '
PASSWORD = ' '
PASSWORD_OPTION = 0
TABLES
PIVOT_FIELD_TAB =
DATA_TAB = it_final[]
FIELDNAMES = it_header[]
EXCEPTIONS
FILE_NOT_EXIST = 1
FILENAME_EXPECTED = 2
COMMUNICATION_ERROR = 3
OLE_OBJECT_METHOD_ERROR = 4
OLE_OBJECT_PROPERTY_ERROR = 5
INVALID_PIVOT_FIELDS = 6
DOWNLOAD_PROBLEM = 7
OTHERS = 8
IF SY-SUBRC 0.
MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
regards
Satish

How to add a header to an InfoSpoke generated CSV

Hello everybody,
I would appreciate any suggestions on how to add a header line (with the field names) to the CSV-file generated by an InfoSpoke.
Thanks for your help.
Greetings,
Martin

if I recall correctly, that "header line" you're looking for, gets created automatically as a 2nd file... you could use a macro to combine both files in Excel?

How to supress HTTP Header in AS2 Receive

I am trying to setup an AS2 connection (my first ever). My setup is an asynchronous receive and send port combination. Things are working fine and my trading partner is receiving the MDN. Trading partner does not want the HTTP header information when they
send the EDI over AS2. How can I suppress the below text from the successful http response from my receive location? I am guessing this would be something at the IIS layer. I got this link but this seems to be a thing of last resort.
http://blogs.msdn.com/b/varunm/archive/2013/04/23/remove-unwanted-http-response-headers.aspx
Content-Length: 0
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Tue, 26 Aug 2014 12:31:13 GMT
Please help!

Last resort or only option, either way, you have to follow the methods provided in that article.
The only other way to accomplish this would be writing a completely custom Adapter.

Urgent.. How to add a menubar to a frame by reading a file

Hi All,
I am involved in a project where in i need to add a menubar to the frame by reading a text file. The text file consists of all the Menu Items and subMenu items.This text file will be a editable file where-in the user can add his own menu-items.
i.e when i run the java program i should read the menu items from a file and then display those menuitems in the Menubar.
I am not getting the idea how i should proceed. Can any one help.
Thanks in advance.
Regards
Ravi Kumar

Sorry again - my use of i as an array index wasn't very clever. The post should have been as follows:
Hi,
You can read in the menu names from the file and add them fairly simply, with something like this:
JMenuBar jmb = new JMenuBar();
JMenu myMenu = new Jmenu("Custom");
jmb.add(myMenu);
in = new BufferedReader(new FileReader("file.txt"));
JMenuItem [] menulist = new JMenuItem[MAXITEMS];
for (int j=0; j < MAXITEMS; j++) {
menulist[j] = new JMenuItem(in.readLine());
myMenu.add(menulist);
Then add the JMenuBar to the parent frame.
However, for the menus to be of much use, you'd need to add actionlisteners to them as well.
If you had a set of possible menu items, and it was just a question of which order the user's file defined them in, and which it used, you could then just test the name of each item in the file and assign an appropriate class of actionlistener to it, something like:
if(menuitem.getText().equals("Open")) {
menuitem[j].addActionListener(new OpenActionListener());
where you'd defined the OpenActionListener class somewhere else.
Hope this helps,
Neil
http://www.theBatCave.org.uk
(Not having a very good day!)

ACE http header response

Hi,
I have for example a site http://abc.com which response back with the port on which it's being used on the server ex: http://abc.com:9081
How would I rewrite the response remove the port on the server that is being used.
Thank you,

Hi,
You have rewrite the 30x redirect response from server or is it a normal response?
You can try below:
(config)# action-list type modify http H
(config-actlist-modify)# header rewrite response Location header-value http://abc.com:9008 replace http://abc.com
I am using header name as Location. Please use according to your need.
I haven't tried this myself but it should work. Try and let me know.
Regards,
Kanwal

How to add scrollbar to the JInternal Frame

How to add scrollbar to JInternal Frame?
I have One JInternal frame i want it should have a scrollbar when we reduces its size.

[url http://java.sun.com/docs/books/tutorial/uiswing/components/scrollpane.html]How to Use Scroll Panes

How to read http header from Forms

Hi,
I have a forms application deployed on 10g AS. We are planning to integrate Oracle Identity management with our forms application. Currently, I access my forms application with an url, say http://hostname/forms/frmservlet?config=test. And, I get a Signon form, where I capture the logon and pwd, and specific to the user credential, I show another form. By integrating my appln with Identity management, I would be protecting my resource in the oracle access system, the WebGate component will do the backend authentication process along with the access server and the directoy service. Upon successful authentication, the DN form the LDAP repository (lets say the userid of my forms application) for the user is returned to the WebGate as http header information/cookie by the Access System. Now without altering the code in frmservlet Servlet, I need to capture the http header info (which contains the userid for the forms application of the user) in my default Signon form. How can I capture this?
Can someone please help
Regards,
Suresh

hi
the following link may helpful to you
http://e-docs.bea.com/wls/docs81/webserv/anttasks.html#1111537
Regards
Prasanna Yalam

How to add specific header and footer to flat file using SSIS 2008

The SSIS package need to create file with headers, totals and adds a status to position one of the records.
Header: "$$ADD ID=ENTK0557 BID='IA   HBZAC14HBZACHRYCORP' PASSWORD='CUSTOMER        ' %AU HBZAC14" is added.
$$ADD = Static
ID=ENTK0557 = Static
BID='IA   HBZAC14HBZACHRYCORP' = "HBZAC14" is the company, "HBZACHRYCORP" is company name
PASSWORD='CUSTOMER        ' = static
HBZAC14 = company
Control Totals:
T010533343 000050 0002659604 000000 0000000000
T = Totals
010533343 = Account Number
000050 = Total records
0002659604 = Total checks
000000 = TBD
0000000000 = TBD
Data for the file
DECLARE
@T AS
TABLE
[BR-ISSUE-VOID-IND] [char]
(1)
NULL,
[BR-ACCT-NBR] [varchar]
(9)
NULL,
[FILLER1] [char]
(1)
NULL,
[BR-SERIAL-NBR] [varchar]
(8000)
NULL,
[BR-CHECK-AMT] [varchar]
(8000)
NULL,
[BR-CK-ISSUE-DATE] [varchar]
(6)
NULL
INSERT
INTO @T
[BR-ISSUE-VOID-IND]
[BR-ACCT-NBR]
[FILLER1]
[BR-SERIAL-NBR]
[BR-CHECK-AMT]
[BR-CK-ISSUE-DATE]
SELECT
'C'
,NULL,' ',30090072,2114.39,100502
UNION
ALL
SELECT
'C'
,NULL,' ',30090190,430.58,100502
UNION
ALL
SELECT
'C'
,NULL,' ',30092371,589.93,100502
UNION
ALL
SELECT
'C'
,NULL,' ',30092550,1198.6,100502
SELECT
FROM @T
File SnapShot.

Using SSIS its difficult unless you use a script task after the data flow to add the header footer bits.
A much better option in this case would be bcp as you can generate query with values in the order you want and bcp it out
http://msdn.microsoft.com/en-us/library/ms162802.aspx
Please Mark This As Answer if it solved your issue
Please Mark This As Helpful if it helps to solve your issue
Visakh
My MSDN Page
My Personal Blog
My Facebook Page

How to access HTTP Header from within Web service?

Hello,
Is there a way to access HTTP header variables like CONTENT_TYPE, CONTENT_LENGTH from within Web Logic web service.
I was able to get the HTTP header variable from within Apache AXIS services by calling context.getProperty(HTTPConstants.MC_HTTP_SERVLETREQUEST
How can i do this from weblogic web service.
I need this to verify the client SSL_CLIENT_DN
In access I can get the header as follows.
HttpServletRequest req = (HttpServletRequest) context
.getProperty(HTTPConstants.MC_HTTP_SERVLETREQUEST);
clientID = req.getHeader("SSL_CLIENT_S_DN_Email");
Thanks
--Arun

hi
the following link may helpful to you
http://e-docs.bea.com/wls/docs81/webserv/anttasks.html#1111537
Regards
Prasanna Yalam

How to add document header text area on fb03's selection screen

hi,
i want to add an additional area on fb03's selection screen. i need document header text area for my document searchs. is it possible?

Refer to this thread
How to Add field to Selection screen of Tx. FBL5N

How to ADD dynamic header text to Right hand Corner of IDR -FPM OVP/OIF

Hi,
How can we add dynamic header text to right hand side corner in FPM OVP?
I know we can handle left hand side.. but i do need simultaneously right hand side..
ANy thoughts??
Rgds
Tarun

I am not sure how it is arranged in 7.02, in 7.01 IDR layout is flow layout so you cannot have layouts other than that. I thought that this has been changed in 7.02 to accommodate the matrix layout. I am not sure about it. If this was true then you can try to play with the layout to fit right hand side. It is not easy though.

How to configure https head on GSS-4492-k9 ver 3.2 (0)?

I have upgraded gss to version 3.2(0) because I need to track a server that uses only https.
I configured a https head KA VIP answer type but the answer never goes on-line.
I tried using www.google.com as the VIP address but not go online too.
The gss is behind a firewall.
I suspected of the firewall but from the gss CLI it seems that the firewall is open for the https traffic:
200.189.189.232 is the server IP and 74.125.234.48 is the www.google.com IP
GSS-02.dms.local#telnet 200.189.189.232 443
Trying 200.189.189.232...
Connected to 200.189.189.232.
Escape character is '^]'.
Connection closed by foreign host.
GSS-02.dms.local#telnet 74.125.234.48 443
Trying 74.125.234.48...
Connected to 74.125.234.48.
Escape character is '^]'.
Connection closed by foreign host.
GSS-02.dms.local#
Can anyone help me on this configuration?
Thanks

Hi,
there's not much on CCO yet. Here's how the GUI looks like for the new probe:
http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/gss4400series/v3.2/release/note/GSSRN32.html#wp305534
If you don't find any clue in the GSS logs, try taking a traffic capture to check what the server is responding to the probe. Keep in mind only code 200 is accepted as a positive reply.
hope this helps,
Fabrizio

How to set HTTP header field "cookie" with http receiver adapter?

Hi,
I am using http receiver adapter (not axis) in a scenario. I could not set a parameter with key cookie in http header. Is there some kind of restriction to set it? I am able to set others like connection and create custom fields using ASMA and dynamic key configuration via UDF on mapping.
Could you please comment on, is cookie http parameter special or noneditable by PI's http adapter? I am looking for a solution without editing any abap code...
Regards,

I believe it is possible since axis adapter provides very same functionality. Let me summarize my scenario may be it helps:
I am trying to call series of webservice lets say in a BPM. First service (login service) will provide me with a session id (in http header with key Set-Cookie) then I will call another service which has that session id in its http header with key cookie then I am going to logout. So I am testing the second part now, but it doest let me send cookie http header parameter.
I hope I clarified a bit more my problem.
Regards,

How to add HTTP Header Response X-Frame-Options:SAMEORIGIN from OWA published via Forefront TMG 2010 to stop Clickjacking

Similar Messages

Maybe you are looking for