Replacing X-Frame-Options with CSP

I am migrating from X-Frame-Options to Content Security Policy to fix the click-jacking vulnerability. My application used to set the SAMEORIGIN policy in hte X-Frame-Options header. What is the equivalent option in Content-Security-Policy?

Solution

frame-ancestors

X-Frame-Options: SAMEORIGIN ➡ Content-Security-Policy: frame-ancestors 'self'
X-Frame-Options: DENY ➡ Content-Security-Policy: frame-ancestors 'none'

Understanding the difference in timing of two functions that increment each element of an integer array
Why MSVC generates warning C4127 when constant is used in "while" - C
Executing a user-space function from the kernel space
Why must the variable used to hold getchar's return value be declared as int?
mpirun -np 4 ./a.out doesn't use all my cores (ubuntu 24.04LTS)
Shadowing an iterator inside a for loop has undefined (?) behaviour in C
Sleep for N seconds and wait for keypress
Dereference twice in gdb
Is this declaration UB?
return type defaults to 'int' [-Wimplicit-int]
What is the scope of `fesetround()`?
Which specific optimization flag causes libm functions to be treated as pure?
How to render text in SDL2?
Why would you use 'extern "C++"'?
Strange Behavior Compiler Ignoring NULL Check Unless I Print Something in the if Statement
Fast inverse square root using fixed point instead of floating point
What is the const qualifier attached to in C: the memory area or the pointer?
GCC options for strictest C code?
How to do an explicit fall-through in C
How do compilers treat CONST qualifier when the pointer points to a memory location obtained with malloc()?
C: cmocka headers - how to unittest?
Why in C when I print a double with a one decimal it round it to the next number
Android C to Java SWIG unable to compile: incompatible types: byte cannot be converted to SWIGTYPE_p_uint8_t
GNU Make in Ubuntu giving fatal error: rpc/types.h: No such file or directory
How can I exclude non-numeric keys? CS50 Caesar Pset2
How change every struct in an array of pointers?
Optimized 2x2 matrix multiplication: Slow assembly versus fast SIMD
Simple frame by frame video decoder library
GCC no longer implements <varargs.h>
Contents of IO buffer unknown == unsafe?