fix(csp): frame-ancestors directive is not supported in the <meta> element

Ref: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/frame-ancestors Signed-off-by: sumarsono <sumarsono@noreply.codeberg.org>
2025-01-14 08:24:12 +00:00
parent 673f77cfd1
commit 58938645eb
1 changed files with 0 additions and 1 deletions
--- a/config.toml
+++ b/config.toml
@ -175,7 +175,6 @@ csp = [
 	{ directive = "style-src", domains = ["'self'", "'unsafe-inline'"] },
 	{ directive = "frame-src", domains = ["https://player.vimeo.com", "https://www.youtube-nocookie.com", "https://toot.community"] },
 	{ directive = "connect-src", domains = ["https://toot.community"] },
-	{ directive = "frame-ancestors", domains = ["'none'"] },
 	{ directive = "base-uri", domains = ["'none'"] },
 	{ directive = "form-action", domains = ["'none'"] }
 ]