topic Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for in Integration and Testing

Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for embeded iframe

AshwiniMetasys — Tue, 21 May 2024 12:26:15 GMT

I am using accept hosted embedded iframe of Authorize.net in portal for sandbox testing. It was working fine till yesterday i.e 20 May 2024.

But from today suddenly it started giving below error

Refused to frame 'https://test.authorize.net/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".

I checked the integration of accept hosted embeded iframe on developer guide i followed all steps but still it is giving error,

Please help if anyone know how to resolve issue.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

obsidianreq — Tue, 21 May 2024 13:20:24 GMT

We're having this problem as well.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

PradeepY09 — Tue, 21 May 2024 13:56:42 GMT

I am also facing this

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

msupko88 — Tue, 21 May 2024 14:45:10 GMT

Same here. Live version of the same page doesn't seem to emit the Content Security Policy header at all.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

Jithu5148 — Tue, 21 May 2024 16:37:25 GMT

same issue is happening for us ...prod url is working. Issue is with sandbox url only.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

angel1604 — Tue, 21 May 2024 20:10:09 GMT

any updates from authorize.net?

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

rwawr — Tue, 21 May 2024 20:22:13 GMT

I also started seeing this issue in the sandbox environment overnight. I don't have a production environment, so can't confirm whether or not it works there. Asked a question about it on Stack Overflow that ~80 people have looked at, so guessing they were running into the same issue as well.

https://stackoverflow.com/questions/78511301/content-security-policy-error-when-trying-to-frame-authorize-net-hosted-payment

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

aacampillo — Tue, 21 May 2024 22:05:25 GMT

I am in the same boat. My organization really needs this addressed or else we can't perform payment testing against authorize.net. I am relieved to hear that the Live version is working ok.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

johntr — Wed, 22 May 2024 04:21:01 GMT

As we all feared, this just broke in Production for us tonight.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

usmanshah9 — Wed, 22 May 2024 04:40:54 GMT

The same happened to us, and we have over 500 customers on a day-to-day basis.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

johntr — Wed, 22 May 2024 05:01:38 GMT

Support is pretty useless and they have no information. We have 10 engineers from our company scrambling on a call and they can't seem to even update their status page.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

Jithu5148 — Wed, 22 May 2024 06:17:58 GMT

we are having the same issue...The issue seems to be with the sandbox URL, for prod URL, it is working for us

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

yairspi — Wed, 22 May 2024 11:02:32 GMT

Same is happening for us. Hopefully AuthorizeNET are planning to fix this soon, as we are blocked from testing a payment functionality that needs to go to production soon.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

PradeepY09 — Wed, 22 May 2024 11:41:15 GMT

Did you get any reply from them?

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

obsidianreq — Wed, 22 May 2024 12:38:40 GMT

It is working for me today on all my sandbox accounts. My live version seems unaffected.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

aacampillo — Wed, 22 May 2024 13:24:03 GMT

Sandbox accounts are now working for me today. Live accounts were unaffected or else I would have heard from customers. I appreciate everyone who posted here and Authorize.Net for addressing this quickly.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

yairspi — Wed, 22 May 2024 14:08:28 GMT

Thanks for the update @aacampillo , it is working again for us as well

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

PradeepY09 — Thu, 20 Jun 2024 06:01:43 GMT

Its breaking for me again, this time Iframe is rendering but I am facing the same error, as well and my Pay and Submit button's click event is not working.

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

shameel — Wed, 28 Aug 2024 17:21:53 GMT

I am facing this error.
Has anyone found a solution to this?

Re: Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for

mariahale — Mon, 02 Sep 2024 16:05:22 GMT

Today, it's running fine on all my sandbox accounts, and my live version doesn’t seem to have any issues either.