From 3487118f5891f8b7bdc279bf09354bf940c11e43 Mon Sep 17 00:00:00 2001
From: Morten Hillbom <mortenhillbom@gmail.com>
Date: Wed, 26 Jun 2024 18:44:26 +0200
Subject: [PATCH] disable default x-frame-options header

---
 src/app.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/app.ts b/src/app.ts
index 763f31c82..373b90115 100644
--- a/src/app.ts
+++ b/src/app.ts
@@ -19,7 +19,7 @@ if (process.env.NODE_ENV === 'production') {
 addOpenApiRoute(app);
 
 app.use(httpLogger);
-app.use(helmet(), json());
+app.use(helmet({ xFrameOptions: false }), json());
 app.use(authMiddleware);
 app.use(ENV.AUTH_API_PREFIX, router);
 app.use(uncaughtErrorLogger, serverErrors);