I need to omit the X-Frame-Options "SAMEORIGIN" header for a specific path only
For example, when the users are trying to include a subpage from my site inside an iframe, the header needs to be omitted from the server response to allow the browsers to load the iframe content.
So, when the users are going to /scheduling/(...) the header should not be sent.
Right now, I am including the security headers in the config