...
Origin: 'https://pbx.wildix.com' is hardcoded in whitelist
During feature implementation following changes were made:
- closed the ability to receive answers in the iframe: set header 'X-Frame-Options' to 'DENY'
- closed cross domain query on Collaboration scripts:
- /collaboration/index.php
- /features/features_user.php
- opened all requests from Origin: 'https://pbxs.wildix.com'
- return an empty response to all requests api, if the Origin is not from the whitelist
Attention
Partners must be informed that any webapi / pbxapi integration will stop working if the domain is not added to the whitelist