Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions,
see Getting Started with Amazon Web Services in China
(PDF).
Embed the NICE DCV web browser client inside an
iFrame
By default, to protect against clickjacking attacks, NICE DCV doesn't allow the web
browser client to be embedded inside an iFrame. However, you can override this default
behavior to allow the web browser client to run inside an iFrame.
For more information, about preventing clickjacking attacks, see the Content Security Policy Cheat Sheet.
To allow the web browser to run inside an iFrame, you must configure the NICE DCV server to
send the following additional HTTP response headers to the web browser client:
-
web-x-frame-options
-
web-extra-http-headers
We recommend that you add both headers to ensure the best compatibility across web
browsers.
If connecting through a NICE DCV Connection Gateway, the x-frame options need to be defined within the gateway configuration. This is done by using the local-resources-http-headers
parameter within the
[web-resources]
section of the gateway configuration.
- Windows server
-
-
Open the Windows Registry Editor and navigate to the
HKEY_USERS/S-1-5-18/Software/GSettings/com/nicesoftware/dcv/connectivity/
key.
-
Open the web-x-frame-options parameter. For
Value data, enter "ALLOW-FROM
https://server_hostname
"
.
If the parameter doesn't exist, create a new String parameter
and name it web-x-frame-options
.
-
Open the web-extra-http-headers parameter.
For Value data, enter
[("Content-Security-Policy", "frame-ancestors
https://server_hostname
")]
.
If the parameter doesn't exist, create a new String parameter
and name it web-extra-http-headers
.
-
Close the Windows Registry Editor.
-
Stop and restart the NICE DCV server.
- Linux server
-
-
Open /etc/dcv/dcv.conf
with your preferred text
editor.
-
In the [connectivity]
section, do the
following:
-
For web-x-frame-options
, enter
"ALLOW-FROM
https://server_hostname
"
.
-
For web-extra-http-headers
, enter
[("Content-Security-Policy", "frame-ancestors
https://server_hostname
")]
.
For example:
[connectivity]
web-x-frame-options="ALLOW-FROM https://my-dcv-server.com
"
web-extra-http-headers=[("Content-Security-Policy", "frame-ancestors https://my-dcv-server.com
")]
-
Save and close the file.
-
Stop and restart the NICE DCV server.
By default, most browsers prevent access to some features, such as microphone access
and fullscreen access. To allow access to these features, modify the iFrame element on
the webpage. For example, to allow access to the microphone and to fullscreen mode,
modify the iFrame element as follows:
<iframe src="..." allow="microphone; fullscreen">/iframe>