Bug 1624914 Comment 16 Edit History

Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.

There is a similar issue on https://apps.admob.com/v2/payments/overview that was reported in https://github.com/webcompat/web-bugs/issues/51688 (the report is for Firefox Preview Nightly, but also reproducible on desktop).

I get this error in the console:
`
The loading of “https://payments.google.com/payments/u/0/embedded/buy_flow?w…bW9iLmNvbQ..&mm=e&hl=en_US&style=%3Amd&cn=%24p_axmgtnt4gzdy0” in a frame is denied by “X-Frame-Options“ directive set to “SAMEORIGIN“.
`

For this request `x-frame-options: SAMEORIGIN` is returned in the response headers and as the result the iframe is blocked. If I disable tracking protection, `x-frame-options` is no longer added and the iframe loads.
There is a similar issue on https://apps.admob.com/v2/payments/overview that was reported in https://github.com/webcompat/web-bugs/issues/51688 (the report is for Firefox Preview Nightly, but also reproducible on desktop).

I get this error in the console:
`
The loading of “https://payments.google.com/payments/u/0/embedded/buy_flow?w…bW9iLmNvbQ..&mm=e&hl=en_US&style=%3Amd&cn=%24p_axmgtnt4gzdy0” in a frame is denied by “X-Frame-Options“ directive set to “SAMEORIGIN“.
`

For this request `x-frame-options: SAMEORIGIN` is returned in the response headers and as the result the iframe is blocked. If I disable ETP, `x-frame-options` is no longer added and the iframe loads.

Back to Bug 1624914 Comment 16