Re: [I] /embedded endpoint has too strict frame policy when Talisman is enabled [superset]

via GitHub Wed, 05 Feb 2025 14:25:34 -0800


patheard commented on issue #27292:
URL: https://github.com/apache/superset/issues/27292#issuecomment-2638175689


   Using the above idea, I made a slight tweak that's working on my end which 
doesn't wipe out the other Talisman CSP rules:
   ```python
   # In my config.py
   from superset.config import TALISMAN_CONFIG
   
   csp_config = TALISMAN_CONFIG.get("content_security_policy", {})
   csp_config["frame-ancestors"] = ["'self'", "localhost:3000"] # set to 
whatever domain is hosting the frame
   TALISMAN_CONFIG["content_security_policy"] = csp_config
   ```


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Re: [I] /embedded endpoint has too strict frame policy when Talisman is enabled [superset]

Reply via email to