We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Shopify Admin refuses to render my app because of a missing frame-ancestor CSP (similar to #1321) - is there any way to customize the CSP setting?
frame-ancestor
shopify_api
shopify_app
// Paste any relevant logs here
The app should render as it does here when hard coding the host name for the frame-ancestor CSP:
The app doesn't render due to misconfigured CSP:
and
The text was updated successfully, but these errors were encountered:
Solved this by adding into the controller that serves the embedded app:
content_security_policy do |policy| policy.frame_ancestors "development.host" if Rails.env.development? end
Sorry, something went wrong.
No branches or pull requests
Issue summary
Shopify Admin refuses to render my app because of a missing
frame-ancestor
CSP (similar to #1321) - is there any way to customize the CSP setting?shopify_api
version: not sureshopify_app
version: 21.4.1 as well as 21.6.0Expected behavior
The app should render as it does here when hard coding the host name for the frame-ancestor CSP:
Actual behavior
The app doesn't render due to misconfigured CSP:
and
The text was updated successfully, but these errors were encountered: