To simplify things and help our users to be more productive, we have archived the current forum and focus our efforts on helping developers on Stack Overflow. You can post new questions on Stack Overflow or join our Discord channel.
We recently has a security consultant take a look at our application built using vaadin. We are still on version 6. One of the advice given was te implement "X-Frame-Options" in the header. My question is, considering vaadin pays attention to security, how does vaadin cope with this situation? I mean there is a reason they would allow the application te be accessible through an iFrame. Implementing X-Frame-Options would be more secure, but does vaadin framework already have a way of dealing with this internal?