How can I disable someone from loading a page in an iframe and using javascript to submit?

Title says it all.

Imagine this:

<!DOCTYPE html>
<html>
<head>
</head>
<body>
<iframe style="display:none" name="xxx"></iframe>
<form method='POST' action='http://MYPAGE.com/account/' target="xxx" id="xxx">
  <input type='hidden' name='xxxxxxx' value='yyyyyyyy'>
  <input type='submit' value='submit'>
</form>
<script>document.getElementById("xxx").submit()</script>
</body>

How can I disable an attack like that?

Solution

Use the X-Frame-Options and set it to DENY or SAMEORIGIN. DENY will completely deny anybody from framing the page in an iframe and SAMEORIGIN will only allow the same origin to display the page in an iframe. See https://coderwall.com/p/kdv1hw for more information.

Keep numbers which appear in both columns, in J lang
Differentiation in J
How to reshape an array with an arbitrary size in one dimension?
Why is Insert (fold) right associative
Write 4 : 'x&{.&.;: y' tacitly
Alignment issue when printing formatted prime numbers in J language
How can I define a verb in J that applies a different verb alternately to each atom in a list?
How to get user input in the J programming language
How to unbox a list of boxed lists of differing lengths in J?
How can I fix 'noun result was required' error in J?
In j, how can I define a verb locally in one scope and pass it to a defined adverb?
Convert boxed array to normal array?
Read column of CSV file as array
Replace atom in array of strings
What does the dyad `=` do to boxed strings?
Index of minimum element using J
How can I take the outer product of string vectors in J?
Building an array of verbs in J
Reading in multidigit command line parameter
Amend with bond to new data shows unexpected behaviour
How to turn a table or matrix into a (flat) list in J
How to run dissect in J?
How to define selection using index function in J
How to exit the J console?
Find 4-neighbors using J
Writing custom verbs in J
How do I negate a selector in J lang?
How to use arbitrary selector in interchange in J lang?
different result once square root is added inside tacit
Sum of arrays with repeated indices