XFrameFilter is not necessary in spring security config (it's global)

6a2d73eb · Piotr Gawron · f0c47f5b · 6a2d73eb
Commit 6a2d73eb authored 5 years ago by Piotr Gawron
--- a/web/src/main/java/lcsb/mapviewer/web/config/SpringSecurityConfig.java
+++ b/web/src/main/java/lcsb/mapviewer/web/config/SpringSecurityConfig.java
@@ -88,7 +88,6 @@ public class SpringSecurityConfig extends WebSecurityConfigurerAdapter {
        .and()
        .cors().disable() // is managed by CORSFilter
        .csrf().disable()
-        .addFilterAfter(new XFrameFilter(), BasicAuthenticationFilter.class)
        .addFilterAfter(new CacheFilter(), BasicAuthenticationFilter.class)
        .addFilterAfter(new CORSFilter(), BasicAuthenticationFilter.class);
  }