You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
I know this question has been placed multiple times during the past five years and more, however no solutions has been found yet.
I know that trello website uses the x-frame protection to prevent click-jacking, however this solution could be left to the end-users, by adapting this configuration per-page and with whitelisted domains. It's technically possible, why it hasn't been discussed so far?
The effort to provide an embedding code during this years is cool, however the current support for the private (non-public) boards is limited to a picture that is merely a "big" clickable icon, the only useful thing you can actually read on it, it's the board name.
Are you investing time for a better solution? Can we hope in something better, or we should give up?
(And yes, I know you can resemble a custom page made via API, but it's a such big task to develop, risking to create more security issues to what this limitation is trying to avoid)
Thanks for the attention.
>however this solution could be left to the end-users
That's the entire reason it has been done - Atlassian don't want to shift the responsibility for having to worry about click-jacking onto people who shouldn't have to worry about it.