From ad0b975e46b98ac20da15e3db75420d139140ca1 Mon Sep 17 00:00:00 2001
From: Daniel Kraus <bovender@bovender.de>
Date: Sat, 10 Sep 2016 09:44:36 +0200
Subject: [PATCH] Comment out CSP frame directive.

---
 .htaccess | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.htaccess b/.htaccess
index a824285..7eb6cc6 100644
--- a/.htaccess
+++ b/.htaccess
@@ -1,5 +1,5 @@
 Header set Content-Security-Policy "default-src *; script-src 'self' ajax.googleapis.com; style-src 'self'"
 Header set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
-Header set X-Frame-Options "sameorigin"
+# Header set X-Frame-Options "sameorigin"
 Header set X-XSS-Protection "1; mode=block"
 Header set X-Content-Type-Options "nosniff"