e2e/test/scenarios/embedding/embedding-reproductions.cy.spec.js · 0a455d9a684c831cb43c539fdf7d03d590496be0 · Engineering Digital Service / Metabase

5 months ago

Fix csp directives for embed previews (#49155) · 0a455d9a

dpsutton authored 5 months ago


* Fix csp directives for embed previews

We set content security directives to allow for iframes on
dashboards. This list did not include 'self' so we can't actually host
an iframe pointing at our, well, self.

Embed previews work by just embedding an iframe with the dashboard and
this breaks if we don't allow iframes from our self.

* e2e test

---------

Co-authored-by: Aleksandr Lesnenko <alxnddr@gmail.com>

Unverified

0a455d9a

History

Fix csp directives for embed previews (#49155)

dpsutton authored 5 months ago


* Fix csp directives for embed previews

We set content security directives to allow for iframes on
dashboards. This list did not include 'self' so we can't actually host
an iframe pointing at our, well, self.

Embed previews work by just embedding an iframe with the dashboard and
this breaks if we don't allow iframes from our self.

* e2e test

---------

Co-authored-by: Aleksandr Lesnenko <alxnddr@gmail.com>

Code owners

Assign users and groups as approvers for specific file changes. Learn more.