Disabling "X-Frame-Options: SAMEORIGIN" from RUT web pages

Hi I have an application with a RUT router inside a piece of self contained equipment, where the router may have to be reconfigured to connect to the WIFI network at different locations.

Unfortunately the interface of the equipment is web based, so I can only use an IFRAME to embed the interface of the router. Unfortunately this is blocked by the routers web server sending the header:
X-Frame-Options: SAMEORIGIN
This forbids the page to be contained in an iframe.

I have been doing some research into how to remove this header but haven’t had any luck.
I found a some solutions that works on vanilla Openwrt/LUCI, however these don’t seem to work on RUTOS. It appears it uses VUCI instead of LUCI, and documentation on that is hard to find.

I’m also looking into the option of a compact reverse proxy that could strip this header, but it doesn’t look like there is anything that could do this out of the box on the package manager.

Does anyone have any ideas, or any more information on VUCI?

VUCI is develop by Teltonika, you will not find any information as it’s closed source, maybe look at SDK might help to find at least something https://wiki.teltonika-networks.com/view/Software_Development_Kit

This topic was automatically closed after 60 days. New replies are no longer allowed.