fix: csp regressions (#38047)

fix #37257 , all details are in the comments
2026-06-14 03:29:55 +00:00 · 2026-06-12 08:36:05 +08:00
parent e473505d64
commit 4f4a0a79ac
27 changed files with 159 additions and 159 deletions
@@ -63,9 +63,7 @@ func RenderFile(ctx *context.Context) {
 	// HINT: PDF-RENDER-SANDBOX: PDF won't render in sandboxed context
 	extRendererOpts := extRenderer.GetExternalRendererOptions()
 	if extRendererOpts.ContentSandbox != "" {
-		ctx.Resp.Header().Add("Content-Security-Policy", "frame-src 'self'; sandbox "+extRendererOpts.ContentSandbox)
-	} else {
-		ctx.Resp.Header().Add("Content-Security-Policy", "frame-src 'self'")
+		ctx.Resp.Header().Add("Content-Security-Policy", "sandbox "+extRendererOpts.ContentSandbox)
 	}

 	err = markup.RenderWithRenderer(rctx, renderer, rendererInput, ctx.Resp)