fix: allow embed content in iframes

* Sets the Content-Security-Policy to allow the sites contents to embedded in an iframe on the newrelic domain
newrelic · Sep 21, 2021 · 4c9e27e · 4c9e27e
1 parent ccce867
commit 4c9e27e
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/gatsby-config.js b/gatsby-config.js
@@ -192,7 +192,10 @@ module.exports = {
     {
       resolve: 'gatsby-plugin-gatsby-cloud',
       options: {
-        allPageHeaders: ['Referrer-Policy: no-referrer-when-downgrade'],
+        allPageHeaders: [
+          'Referrer-Policy: no-referrer-when-downgrade',
+          'Content-Security-Policy: frame-ancestors https://*.newrelic.com http://*.newrelic.com',
+        ],
       },
     },
   ],