Apex Code Development You need to sign in to do that
Don't have an account?
Lindsay Schinasi 5 Invalid 'X-Frame-Options' header encountered when loading
got this when following trailhead use standard controller instructions (working through section: find a record ID
any help fixing this?
Invalid 'X-Frame-Options' header encountered when loading 'https://na35.salesforce.com/apexpages/devmode/devConsoleViewStateMetadataReceiver.apexp?sfdcIFrameOrigin=https%3A%2F%2Fc.na35.visual.force.com': 'ALLOW-FROM https://c.na35.visual.force.com' is not a recognized directive. The header will be ignored.
any help fixing this?
Invalid 'X-Frame-Options' header encountered when loading 'https://na35.salesforce.com/apexpages/devmode/devConsoleViewStateMetadataReceiver.apexp?sfdcIFrameOrigin=https%3A%2F%2Fc.na35.visual.force.com': 'ALLOW-FROM https://c.na35.visual.force.com' is not a recognized directive. The header will be ignored.
I was encountering this message in the dev console while I was writing some visualforce. It looks like this option is set by default for visualforce pages to help prevent clickjacking and Chrome doesn't support the ALLOW-FROM X-frame option (https://www.owasp.org/index.php/Clickjacking_Defense_Cheat_Sheet#X-Frame-Options_Header_Types). If this is preventing you from completing a trailhead then you could try using Firefox or IE. Or you could try adding the showHeader="false" arg to your page tag. This disables the default headers in visualforce but you may still fail the trailhead validation test depending on how the validation is calculated.
$A.get("e.force:navigateToURL").setParams(
{"url": "/apex/pageName"}).fire();
and then refresh that new tab all the times you doing any changes in you code.
Hopefully I helped to someone :)