Frame Ancestors CSP

By default, Limio paages have the X-Frame-Options header set to 'sameorigin' as a security measure. This prevents unauthorised embedding of pages on external sites. However, you can define specific domains where you want to allow Limio pages to be hosted, enabling you to embed Limio pages within an iframe on other sites.

To embed a Limio shop page on an external site, follow these steps:

1. Navigate to Settings > Allowed Hosts.

2. Locate the Allowed Ancestors section.

3. Specify the domain(s) where you want to allow the page to be embedded.

Ensure that the URL starts with "https://" and does not include any trailing slashes ("/").

If you are using multiple domains, make sure to add the URLs for all the domains where you plan to host the Limio component via an iframe.