79566465

Date: 2025-04-10 11:17:19
Score: 1.5
Natty:
Report link

I finally got this to work! I wound up adding content security policy to web.config (I'm hosted by IIS). Thanks to Groc.

  <system.webServer>
    <httpProtocol>
      <customHeaders>
        <remove name="X-Frame-Options" />
        <add name="Content-Security-Policy" value="frame-ancestors 'self' https://www.Example.com;" />
      </customHeaders>
    </httpProtocol>
Reasons:
  • Blacklisted phrase (0.5): Thanks
  • Has code block (-0.5):
  • Self-answer (0.5):
  • Low reputation (1):
Posted by: GroupPlay