From 1115c18775e450077ea6cad0ffef6be80cf7ba63 Mon Sep 17 00:00:00 2001
From: emrah <emrah.eryilmaz@nordeck.net>
Date: Wed, 3 Jan 2024 15:05:02 +0300
Subject: [PATCH] fix(main): filter out frame-ancestors if exists in
 Content-Security-Policy

---
 main.js | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/main.js b/main.js
index 194ea5a6d..4afb853c8 100644
--- a/main.js
+++ b/main.js
@@ -272,6 +272,15 @@ function createJitsiMeetWindow() {
             details.responseHeaders['content-security-policy'] = [ cspFiltered ];
         }
 
+        if (details.responseHeaders['Content-Security-Policy']) {
+            const cspFiltered = details.responseHeaders['Content-Security-Policy'][0]
+                .split(';')
+                .filter(x => x.indexOf('frame-ancestors') === -1)
+                .join(';');
+
+            details.responseHeaders['Content-Security-Policy'] = [ cspFiltered ];
+        }
+
         callback({
             responseHeaders: details.responseHeaders
         });