Short.io provides link cloaking for replacing a long URL with the short one in the browser address bar. For example, a link like "https://www.linkedin.com/posts/the-cyber-security-hub_activity-671893603246255308" is replaced with "https://yourdomain.com/article." The feature's purpose is to hide essential parts of original URLs, such as UTM parameters and affiliate codes.
The most frequently cloaked websites among Short.io users are:
- Google Tools.
- Amazon S3.
If you are trying to cloak links with these services, the error "Cloaking is forbidden by destination URL with X-Frame-Options header" may occur. It means that the service you are trying to hide forbids cloaking for the links, containing rendering in a frame, iframe, or object. Since Short.io applies iframe for link cloaking, you can't hide the original URLs for some services. The main reason why some apps forbid link cloaking is to provide clickjacking protection.
LinkedIn is among the applications that don't allow using link cloaking for the links. Sometimes you inevitably need to hide LinkedIn links to save important data. For this, you need:
1. Go to a LinkedIn post you want to share.
2. Click the ellipsis icon > Embed this post.
3. Extract the link from the embed code from the src value.
iframe src="https://www.linkedin.com/embed/feed/update/urn:li:share:6718936031866961920" height="277" width="504" frameborder="0" allowfullscreen="" title="Embedded post"></iframe
4. Shorten a link > Cloak it.
This way, the link will be shortened, and you will successfully hide essential values.
What did you learn?
- hide linkedin links
- cloak linkedin link that contain important data
- why link cloakinfg is forbidden
- linkedin short links