How can I troubleshoot and resolve the issue of “refused to frame because an ancestor violates”?

 In the context of Salesforce, here are the steps given of how you can address this particular issue:-

Understanding Contents security policy

The content security policy is the policy that can help in preventing various types of attacks including click jacking by specifying which resources a web page is trying to load.

Potential solutions

You can modify the content security policy:

If you have control over the Csp of the page you can try to adjust the policy for allowing loading contents from specific domains in iframes.

Proxy content loading:

If you are not able to modify the CSP of the parent page then you can try to consider content loading through your own server. This way, the iframe content is loaded from your particular domain which should comply with the policies related to CSP.

Communicate with Content providers:

You should reach out to the owners of the External content and discuss options for allowing their content to be loaded in iframes within your particular web-based application.

Hers is the example given of how you can modify the content security policy meta tag in the HTML of the parent page to allow loading contents from “example.com” in iframes which would help in addressing the issue:-

    <meta</span> charset=”UTF-8”>