I have an asp.net application and need to place it inside an Iframe.
It turns out to be wrong on the Chrome console:
Refused to display 'domain' in a frame because it set 'X-Frame-Options' to 'SAMEORIGIN'.
In mozilla it does not give error, and also does not show anything.
WebConfig looks like this:
<httpProtocol>
<customHeaders>
<add name="Access-Control-Allow-Origin" value="*" />
</customHeaders>
</httpProtocol>
I do not know what to do.