FROM CACHE - en_header

Is there a way to remove content-security-policy: frame-ancestors 'none'; from server's header?

Solved
YuriiSt
New Member
1 0 0
‎11-15-2021 08:01 AM

Is there a way to remove content-security-policy: frame-ancestors 'none'; from server's he...

As a developer I was asked to create a demo App that shows our several Shopify pages via iframe.

I can see "content-security-policy: frame-ancestors 'none';" header added to Shopify server's response.

That blocks pages to be embed via iframe.

So is there a way to disable this header through some settings?

Thanks

Labels:
486 Views
0 Likes
Accepted Solution (1)

Accepted Solutions
iDoThemes
Trailblazer
197 42 70
‎11-15-2021 08:44 PM

Re: Is there a way to remove content-security-policy: frame-ancestors 'none'; from server'...

This is an accepted solution.

Not from the Admin settings, though if you contact Shopify support and ask them, they should be able to toggle a flag for you that will allow you to render the store in an iframe.

Developer of Liquify Chrome Extension -- Enhance the Shopify Theme Code Editor
.




Theme Developer -- Drop me a line

View solution in original post

399 Views
Reply 1 (1)
iDoThemes
Trailblazer
197 42 70
‎11-15-2021 08:44 PM

Re: Is there a way to remove content-security-policy: frame-ancestors 'none'; from server'...

This is an accepted solution.

Not from the Admin settings, though if you contact Shopify support and ask them, they should be able to toggle a flag for you that will allow you to render the store in an iframe.

Developer of Liquify Chrome Extension -- Enhance the Shopify Theme Code Editor
.




Theme Developer -- Drop me a line
400 Views
Terms of Service Privacy Policy