Merge pull request #17 from yourclaw/fix/configurable-frame-ancestors

fix: configurable CSP frame-ancestors for dashboard embedding

Author: fabianbaier

src/gateway/control-ui-csp.test.ts

@@ -1,8 +1,19 @@
-import { describe, expect, it } from "vitest";
+import { afterEach, describe, expect, it } from "vitest";
 import { buildControlUiCspHeader } from "./control-ui-csp.js";
 
 describe("buildControlUiCspHeader", () => {
+  const originalEnv = process.env.OPENCLAW_FRAME_ANCESTORS;
+
+  afterEach(() => {
+    if (originalEnv === undefined) {
+      delete process.env.OPENCLAW_FRAME_ANCESTORS;
+    } else {
+      process.env.OPENCLAW_FRAME_ANCESTORS = originalEnv;
+    }
+  });
+
   it("blocks inline scripts while allowing inline styles", () => {
+    delete process.env.OPENCLAW_FRAME_ANCESTORS;
     const csp = buildControlUiCspHeader();
     expect(csp).toContain("frame-ancestors 'none'");
     expect(csp).toContain("script-src 'self'");
@@ -15,4 +26,17 @@ describe("buildControlUiCspHeader", () => {
     expect(csp).toContain("https://fonts.googleapis.com");
     expect(csp).toContain("font-src 'self' https://fonts.gstatic.com");
   });
+
+  it("respects OPENCLAW_FRAME_ANCESTORS env var", () => {
+    process.env.OPENCLAW_FRAME_ANCESTORS = "https://www.yourclaw.ai https://yourclaw.ai";
+    const csp = buildControlUiCspHeader();
+    expect(csp).toContain("frame-ancestors https://www.yourclaw.ai https://yourclaw.ai");
+    expect(csp).not.toContain("frame-ancestors 'none'");
+  });
+
+  it("defaults to frame-ancestors 'none' when env var is empty", () => {
+    process.env.OPENCLAW_FRAME_ANCESTORS = "";
+    const csp = buildControlUiCspHeader();
+    expect(csp).toContain("frame-ancestors 'none'");
+  });
 });

src/gateway/control-ui-csp.ts

@@ -1,13 +1,19 @@
 export function buildControlUiCspHeader(): string {
-  // Control UI: block framing, block inline scripts, keep styles permissive
-  // (UI uses a lot of inline style attributes in templates).
+  // Control UI: block framing by default, block inline scripts, keep styles
+  // permissive (UI uses a lot of inline style attributes in templates).
   // Keep Google Fonts origins explicit in CSP for deployments that load
   // external Google Fonts stylesheets/font files.
+  //
+  // OPENCLAW_FRAME_ANCESTORS: space-separated list of origins allowed to
+  // embed this page in an iframe (e.g. "https://www.yourclaw.ai").
+  // Defaults to 'none' (no embedding) when unset.
+  const frameAncestors =
+    process.env.OPENCLAW_FRAME_ANCESTORS?.trim() || "'none'";
   return [
     "default-src 'self'",
     "base-uri 'none'",
     "object-src 'none'",
-    "frame-ancestors 'none'",
+    `frame-ancestors ${frameAncestors}`,
     "script-src 'self'",
     "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com",
     "img-src 'self' data: https:",

src/gateway/control-ui.ts

@@ -98,7 +98,12 @@ type ControlUiAvatarMeta = {
 };
 
 function applyControlUiSecurityHeaders(res: ServerResponse) {
-  res.setHeader("X-Frame-Options", "DENY");
+  // Only set X-Frame-Options: DENY when framing is fully blocked.
+  // When OPENCLAW_FRAME_ANCESTORS is configured, CSP frame-ancestors
+  // takes precedence and X-Frame-Options would conflict.
+  if (!process.env.OPENCLAW_FRAME_ANCESTORS?.trim()) {
+    res.setHeader("X-Frame-Options", "DENY");
+  }
   res.setHeader("Content-Security-Policy", buildControlUiCspHeader());
   res.setHeader("X-Content-Type-Options", "nosniff");
   res.setHeader("Referrer-Policy", "no-referrer");

yourclaw-patches/frame-ancestors-configurable.patch

@@ -0,0 +1,88 @@
+diff --git a/src/gateway/control-ui-csp.test.ts b/src/gateway/control-ui-csp.test.ts
+index 7e69d48e7..13bfbe705 100644
+--- a/src/gateway/control-ui-csp.test.ts
++++ b/src/gateway/control-ui-csp.test.ts
+@@ -1,8 +1,19 @@
+-import { describe, expect, it } from "vitest";
++import { afterEach, describe, expect, it } from "vitest";
+ import { buildControlUiCspHeader } from "./control-ui-csp.js";
+ 
+ describe("buildControlUiCspHeader", () => {
++  const originalEnv = process.env.OPENCLAW_FRAME_ANCESTORS;
++
++  afterEach(() => {
++    if (originalEnv === undefined) {
++      delete process.env.OPENCLAW_FRAME_ANCESTORS;
++    } else {
++      process.env.OPENCLAW_FRAME_ANCESTORS = originalEnv;
++    }
++  });
++
+   it("blocks inline scripts while allowing inline styles", () => {
++    delete process.env.OPENCLAW_FRAME_ANCESTORS;
+     const csp = buildControlUiCspHeader();
+     expect(csp).toContain("frame-ancestors 'none'");
+     expect(csp).toContain("script-src 'self'");
+@@ -15,4 +26,17 @@ describe("buildControlUiCspHeader", () => {
+     expect(csp).toContain("https://fonts.googleapis.com");
+     expect(csp).toContain("font-src 'self' https://fonts.gstatic.com");
+   });
++
++  it("respects OPENCLAW_FRAME_ANCESTORS env var", () => {
++    process.env.OPENCLAW_FRAME_ANCESTORS = "https://www.yourclaw.ai https://yourclaw.ai";
++    const csp = buildControlUiCspHeader();
++    expect(csp).toContain("frame-ancestors https://www.yourclaw.ai https://yourclaw.ai");
++    expect(csp).not.toContain("frame-ancestors 'none'");
++  });
++
++  it("defaults to frame-ancestors 'none' when env var is empty", () => {
++    process.env.OPENCLAW_FRAME_ANCESTORS = "";
++    const csp = buildControlUiCspHeader();
++    expect(csp).toContain("frame-ancestors 'none'");
++  });
+ });
+diff --git a/src/gateway/control-ui-csp.ts b/src/gateway/control-ui-csp.ts
+index 8a7b56f1e..a3845fc2d 100644
+--- a/src/gateway/control-ui-csp.ts
++++ b/src/gateway/control-ui-csp.ts
+@@ -1,13 +1,19 @@
+ export function buildControlUiCspHeader(): string {
+-  // Control UI: block framing, block inline scripts, keep styles permissive
+-  // (UI uses a lot of inline style attributes in templates).
++  // Control UI: block framing by default, block inline scripts, keep styles
++  // permissive (UI uses a lot of inline style attributes in templates).
+   // Keep Google Fonts origins explicit in CSP for deployments that load
+   // external Google Fonts stylesheets/font files.
++  //
++  // OPENCLAW_FRAME_ANCESTORS: space-separated list of origins allowed to
++  // embed this page in an iframe (e.g. "https://www.yourclaw.ai").
++  // Defaults to 'none' (no embedding) when unset.
++  const frameAncestors =
++    process.env.OPENCLAW_FRAME_ANCESTORS?.trim() || "'none'";
+   return [
+     "default-src 'self'",
+     "base-uri 'none'",
+     "object-src 'none'",
+-    "frame-ancestors 'none'",
++    `frame-ancestors ${frameAncestors}`,
+     "script-src 'self'",
+     "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com",
+     "img-src 'self' data: https:",
+diff --git a/src/gateway/control-ui.ts b/src/gateway/control-ui.ts
+index e410eb23d..fed754421 100644
+--- a/src/gateway/control-ui.ts
++++ b/src/gateway/control-ui.ts
+@@ -98,7 +98,12 @@ type ControlUiAvatarMeta = {
+ };
+ 
+ function applyControlUiSecurityHeaders(res: ServerResponse) {
+-  res.setHeader("X-Frame-Options", "DENY");
++  // Only set X-Frame-Options: DENY when framing is fully blocked.
++  // When OPENCLAW_FRAME_ANCESTORS is configured, CSP frame-ancestors
++  // takes precedence and X-Frame-Options would conflict.
++  if (!process.env.OPENCLAW_FRAME_ANCESTORS?.trim()) {
++    res.setHeader("X-Frame-Options", "DENY");
++  }
+   res.setHeader("Content-Security-Policy", buildControlUiCspHeader());
+   res.setHeader("X-Content-Type-Options", "nosniff");
+   res.setHeader("Referrer-Policy", "no-referrer");