Enabling the Verba Web Application in 3rd Party Frame

Owned by Kiss, Mate
Last updated: Apr 08, 2024
1 min read

Because of the default security settings of the Verba Web Application, displaying the webapp in a 3rd party frame is not allowed. The following steps describe how to turn off this security feature.

Step 1 - Log in to the Verba Media Repository (or Single) server.

Step 2 - Go to the [APPLICATION_FOLDER]\tomcat\conf folder.

Step 3 - Open the web.xml file for editing.

Step 4 - Remove or comment out the following lines:

<filter>
    <filter-name>httpHeaderSecurity</filter-name>
    <filter-class>org.apache.catalina.filters.HttpHeaderSecurityFilter</filter-class>
    <async-supported>true</async-supported>
    <init-param>
        <param-name>antiClickJackingOption</param-name>
        <param-value>SAMEORIGIN</param-value>
    </init-param>
</filter>

Step 5 - Remove or comment out the following lines too:

<filter-mapping>
    <filter-name>httpHeaderSecurity</filter-name>
    <url-pattern>/*</url-pattern>
    <dispatcher>REQUEST</dispatcher>
</filter-mapping>


Step 6 - Save the changes.

Step 7 - Restart the Verba Web Application service in the Services console.