Original Question or Issue: |
Office Online Server editing doesn't work when Cloudflare DNS/WAF is used |
Environment: |
|
Steps to Reproduce: |
Route the traffic to on-prem Office Online server via Cloudflare. |
Error or Log Message: | Trying to edit files using Office Online will show an error. The browser developer console will show an error Header set X-Frame-Options is set to 'SAMEORIGIN' and Office Online URL is not allowed to load. |
Defect or Enhancement Number: |
|
Cause: | |
Resolution or Workaround: |
Checked Cloudflare for specific "Response Header Transform Rules" or "Managed Transforms" have "Add security headers" enabled. This needs to be overridden with some custom content security rules to allow cross scripting with FileCloud URL in your Cloudflare, based on your organizations Cloudflare policies.
|
Notes: | |