About jschultz1234

jschultz1234 · ‎10-26-2020

You will need to submit a support ticket with Khoros and have them implement it. They need to update your response header settings to include content security policy and include all relevant domains. You can also include an asterisk in your domain to cover any current or future subdomains. *.yourdomain.com and Change from x-frame-options: SAMEORIGIN Change to x-frame-options: ALLOW-FROM https://yourspecificdomain.com Inspect your page in Chrome, switch to the Network Tab, refresh your page, select the active URL from the list and check the settings they have set.

jschultz1234 · ‎07-31-2020

This would be great to get resolved! I have a similar issue where we need to show blog content in iframes in a separate subdomain. Needs: Turn OFF X-Frame Options Add Content Security Policy to the Response Headers. content-security-policy: frame-src ‘self’ *.domain; frame-ancestors ‘self’ *.domain

jschultz1234 · ‎06-30-2020

I have Khoros on one subdomain and a separate tool on a different subdomain which shares content in an iframe. I am unable to do so with my community content due to Khoros security policy. How can I edit any of the following to allow this? x-frame-options: SAMEORIGIN Content Security Policy Response Headers

Online Status	Offline
Date Last Visited	‎10-27-2020 12:28 PM

Re: Khoros Content Security Policy - Share in External iframe

Re: Khoros Content Security Policy - Share in External iframe??

Khoros Content Security Policy - Share in External iframe