Closed 9mido closed 3 years ago
Added this note, thank you!
@tzarebczan
Not sure if adding the hcaptcha link and telling your visitors here you go figure it out was the best way to do this. Plus the hcaptcha link could change in the future.
I would have made it more clear to use 'https://odysee.com' inside of frame-src specifically and make a simple guide similar to hcaptcha on the lbry.com page itself about content security policy.
https://lbry.com/faq/embed
Examples:
https://stripe.com/docs/security/guide#content-security-policy
https://docs.hcaptcha.com/#content-security-policy-settings
All I had to do was add 'https://odysee.com' to frame-src and it worked.