CSP Frame Ancestors
From SAP Enable Now Wiki
Where to find it
- Manager > Administration > Server Settings menu > Security category > CSP Frame Ancestors setting
Purpose
CSP is Content Security Policy (CSP). I think this setting allows you to specify which parent URLs can load SAP Enable Now content into a Frame. Useful values are:
- none: No content can be loaded into a Frame. Be careful of using this as much SAP Enable Now content is designed to be loaded into Frames (for example, by SAP Companion).
- self: only content originating from your Manager domain (e.g. cloud.sap) can load content into a Frame.