Iframe blocked #423
Comments
|
You can't iframe crossorigin sites hosted on a domain like Koyeb (they have that disabled); a common internet practice used on the majority of sites so no place for that. You could host it yourself where you can manage the headers to allow crossorigin iframe usage or iframe one of the official domains (well I believe I have that disabled as well) |
|
Actually I flat out lied perhaps this is allowed on Koyeb as a subdomain. Try this first: Line 111 in fea9f9e Edit this function here that utilizes helmet to apply/remove those headers preventing it from being iframed. app.register(fastifyHelmet, {
contentSecurityPolicy: {
directives: {
defaultSrc: ["'self'"],
frameAncestors: ["*"],
},
},
xFrameOptions: false,
xPoweredBy: false,
}); |
|
Thanks that worked |
|
how do I edit it? please bro i need this |
Fork it then edit line 111 with the snipit above in src/server.mjs in a ide (vs code web works with github remote repo) then deploy your fork to koyeb. If you still don't get it ask chatgpt for help. :) |
|
can i have the github link to yours so I can simply fork that? i tried and it didn't work |
I am hosting for free at Koyeb and am going to iframe the long free subdomain URL into my games website but Iframes are blocked in some way (snippet probably encoded) and I am hoping a dev can point me to where it is hidden within the code. Already spent about 1 hour searching for anything related to iframes, base64, etc., and couldn't find anything relating to it besides stuff in the Ultraviolet or Rammerhead folders (which I am 99% sure aren't causing this as the home page of hu I am hosting won't iframe).
*edit I am using 6.3 production btw and just finished briefly skimming all the files and didn't find anything :(
The text was updated successfully, but these errors were encountered: