Error When Trying to Open CPQ Cloud in an External Iframe [Refused to display 'https://SITENAME.bigmachines.com/XXXX/YYY' in a frame because an ancestor violates the following Content Security Policy directive: ...]
(Doc ID 2291606.1)
Last updated on MAY 29, 2020
Applies to:Oracle BigMachines CPQ Cloud Service - Version 2017 R1 and later
Information in this document applies to any platform.
When trying to open CPQ Cloud in an iframe on another site, a blank page displays instead. Opening the browser console (F12) shows the following error:
Refused to display 'https://SITENAME.bigmachines.com/XXXX/YYY' in a frame because an ancestor violates the following Content Security Policy directive:"frame-ancestors *.salesforce.com *.force.com *.oracle.com
The following error can also appear:
Load denied by X-Frame-Options: https://xxxxxx.bigmachines.com/commerce/buyside/search/search_inputs.jsp?perform_search=true does not permit framing by https://xxxxxx.bigmachines.com/commerce/buyside/search/cm_search.jsp?from_commerce_manager=true&adhoc_search=true&process_id=xxxxxxxx&version_id=xxxxxxxx&clone_action_id=xxxxxxxx&_parent_window=_main_child_dlg_xxxxxxxx.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document