tzarebczan
commented
3 years ago Added this note, thank you!
Closed 9mido closed 3 years ago
tzarebczan
commented
3 years ago Added this note, thank you!
9mido
commented
3 years ago @tzarebczan
Not sure if adding the hcaptcha link and telling your visitors here you go figure it out was the best way to do this. Plus the hcaptcha link could change in the future.
I would have made it more clear to use 'https://odysee.com' inside of frame-src specifically and make a simple guide similar to hcaptcha on the lbry.com page itself about content security policy.
https://lbry.com/faq/embed
Examples:
https://stripe.com/docs/security/guide#content-security-policy
https://docs.hcaptcha.com/#content-security-policy-settings
All I had to do was add 'https://odysee.com' to frame-src and it worked.