I'm presenting a web server through the WAF using Form authentication to restrict access. This was recently scanned, and came up vulnerable to Clickjacking attacks. Is there a way to add an X-Frame-Options or Content-Security-Policy: frame-ancestors header to the login form presented from the WAF?
Thanks. -Steve
This thread was automatically locked due to age.