[Bug]: In 0.6.0 Version, IFraming the admin UI is not working. #922
Description
🐞 Bug Summary
Briefly describe the issue or unexpected behavior.
I am running my 0.6.0 docker image as below. It is not allowing to iframe the UI within other application.
It is working fine with all the previous versions like 0.5.0 etc.
I did a local build using "make docker-prod".
With the public docker image as well getting same error.
docker run -d --name ibm-mcp-gateway -p 4444:4444 -e HOST=0.0.0.0 -e JWT_SECRET_KEY=my-test-key -e MCPGATEWAY_UI_ENABLED=true -e MCPGATEWAY_ADMIN_API_ENABLED=true -e BASIC_AUTH_USER=admin -e BASIC_AUTH_PASSWORD=admin123 -e AUTH_REQUIRED=false -e X_FRAME_OPTIONS=SAMEORIGIN -e ALLOWED_ORIGINS=["*"] -e DATABASE_URL=sqlite:///./mcp.db --network=host mcpgateway/mcpgateway:latest
Error:
Refused to frame 'http://144.8.103.166:4444/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".
🧩 Affected Component
Select the area of the project impacted:
-
mcpgateway- API -
mcpgateway- UI (admin panel) -
mcpgateway.wrapper- stdio wrapper - Federation or Transports
- CLI, Makefiles, or shell scripts
- Container setup (Docker/Podman/Compose)
- Other (explain below)
🔁 Steps to Reproduce
- ...
- ...
- ...
🤔 Expected Behavior
What should have happened instead?
📓 Logs / Error Output
Paste any relevant stack traces or logs here.
🧠 Environment Info
You can retrieve most of this from the /version endpoint.
| Key | Value |
|---|---|
| Version or commit | e.g. v0.9.0 or main@a1b2c3d |
| Runtime | e.g. Python 3.11, Gunicorn |
| Platform / OS | e.g. Ubuntu 22.04, macOS |
| Container | e.g. Docker, Podman, none |
🧩 Additional Context (optional)
Add any configuration details, flags, or related issues.