Refused to frame 'https://player.twitch.tv/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors"

alexandre · June 29, 2020, 7:42pm

Hello all,

My website is https://www.stormtigerteam.com/# and I did install the SSL certificate just to run the twitch embedded player. Unfortunately, it is not working, and from what I can see, it is because of the parent tag that seems to be incorrect.

Could someone help me out?
HTML iframe:

 <iframe
        class="embed-responsive-item"
        src="https://player.twitch.tv/?channel={$streamer['arrayindex']}&parent=stormtigerteam.com"
        allowfullscreen
        align="middle"
      >

Dist · June 29, 2020, 7:50pm

You need to add the additional parent &parent=www.stormtigerteam.com to your src. Your embeds currently display perfectly fine on stormtigerteam.com, but www.stormtigerteam.com is a different parent, so you need to include them both as parents if either domain is to be used.

alexandre · June 29, 2020, 7:53pm

Dude you just saved my life, thank you so much.

system · July 29, 2020, 7:53pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.