From e791b51de7f3a84622b0c1c942b8432ebc84021e Mon Sep 17 00:00:00 2001
From: Jeremy Kauffman <jeremy@lbry.io>
Date: Sat, 7 Dec 2019 11:50:08 -0500
Subject: [PATCH] disable iframe blocking headers

---
 view/Response.class.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/view/Response.class.php b/view/Response.class.php
index db837e79..e2b586c1 100644
--- a/view/Response.class.php
+++ b/view/Response.class.php
@@ -249,8 +249,8 @@ class Response
     public static function setDefaultSecurityHeaders()
     {
         $defaultHeaders = [
-      'Content-Security-Policy' => "frame-ancestors 'none'",
-      'X-Frame-Options'         => 'DENY',
+      //'Content-Security-Policy' => "frame-ancestors 'none'",
+      //'X-Frame-Options'         => 'DENY',
       'X-XSS-Protection'        => '1',
     ];