Cybersource Developer Community Cybersource Developer Community

AshwiniMetasys · ‎05-21-2024

I am using accept hosted embedded iframe of Authorize.net in portal for sandbox testing. It was working fine till yesterday i.e 20 May 2024.

But from today suddenly it started giving below error

Refused to frame 'https://test.authorize.net/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".

I checked the integration of accept hosted embeded iframe on developer guide i followed all steps but still it is giving error,

Please help if anyone know how to resolve issue.

obsidianreq · ‎05-21-2024

We're having this problem as well.

PradeepY09 · ‎05-21-2024

I am also facing this

msupko88 · ‎05-21-2024

Same here. Live version of the same page doesn't seem to emit the Content Security Policy header at all.

Jithu5148 · ‎05-21-2024

same issue is happening for us ...prod url is working. Issue is with sandbox url only.

angel1604 · ‎05-21-2024

any updates from authorize.net?

rwawr · ‎05-21-2024

I also started seeing this issue in the sandbox environment overnight. I don't have a production environment, so can't confirm whether or not it works there. Asked a question about it on Stack Overflow that ~80 people have looked at, so guessing they were running into the same issue as well.

https://stackoverflow.com/questions/78511301/content-security-policy-error-when-trying-to-frame-auth...

aacampillo · ‎05-21-2024

I am in the same boat. My organization really needs this addressed or else we can't perform payment testing against authorize.net. I am relieved to hear that the Live version is working ok.

johntr · ‎05-21-2024

As we all feared, this just broke in Production for us tonight.

usmanshah9 · ‎05-21-2024

The same happened to us, and we have over 500 customers on a day-to-day basis.

Cybersource Developer Community Cybersource Developer Community

Content Security Policy directive: "frame-ancestors 'none'" error coming suddenly for embeded iframe