I am running my Rails 5.2. project and in my application.html.erb. I have this

 <%= csrf_meta_tags %>

I am getting this error

Refused to display 'https://open.spotify.com/user/spotify/playlist/37i9dQZF1DX0HRj9P7NxeE?' in a frame because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".

This sets frame-ancestors 'none';

but now that is giving me an issue. i want to change to frame-ancestors 'self';

But how do i do this in Rails

0 Answers