Unable to display iframe in OBIEE dashboard

bskumar.obiee

@Gianni Ceresa I was able to modify the iframe but I get a different error now. "Refused to display 'URL' in a frame because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'self'".

I have enabled the CSP policy.

<ContentSecurityPolicy>

                  <PolicyDirectives>

                      <Directive>

      <Name>script-src</Name>

      <Value>*</Value></Directive>

      <Directive>

                      <Name>frame-src</Name>

                     <Value>*</Value></Directive>

                     <Directive><Name>img-src</Name>

                     <Value>*</Value>

                    </Directive>

                  </PolicyDirectives>

             </ContentSecurityPolicy>

     <InIFrameRenderingMode>allow</InIFrameRenderingMode>

Is there anything I'm missing here?

Gianni Ceresa

I would say it's maybe the page you try to embed with start messing around ...

"frame-ancestors" is a CSP setting just like "script-src", "frame-src" and "img-src", so trying setting it as well (set it as * to see if it changes something).

In my test I just had to set frame-src to include a simple webpage, maybe APEX is a bit more annoying, so try to follow the errors and fix them one after the other.

Again I would say this isn't an OBIEE issue but also the page you want to embed can mess and try to do things which by default isn't allowed.

bskumar.obiee

Thank you.. Let me try modifying them.. I really appreciate your inputs on this!