Injecting HTTP Response with the secure header can mitigate most of the web security vulnerabilities.
To enable secure HTTP header in Apache Tomcat, configuring X-Frame-Options Header is very essential to prevent clickjacking attack.
To configure X-Frame-Options Header, complete the following steps.