Hello,

I am hosting multiple apps that require signing, so I created a dedicated app that uses the DocuSign JS library to provide a focused view signing interface. This app is designed to be accessed via an iframe by my other apps. But it keeps giving this error: 

Refused to frame 'https://apps-d.docusign.com/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors https://localhost:4209"

The signing app is hosted at https://localhost:4209, while the other apps are hosted on ports 4201 and 4206. The signing app works perfectly when accessed directly from the browser at https://localhost:4209, but it fails to load when embedded in an iframe within the apps hosted on ports 4201 and 4206.

I have added all the required domains in the request. Here’s the C# code of the request for generating the url

var recipientViewRequest = new RecipientViewRequest
            {
                ReturnUrl = request.ReturnUrl,
                ClientUserId = "1234",
                AuthenticationMethod = "None",
                UserName = request.RecipientName,
                Email = request.RecipientEmail,
                MessageOrigins = s"https://apps-d.docusign.com"],
                FrameAncestors = s"https://apps-d.docusign.com", "https://localhost:5002", "https://localhost:4209", "https://localhost:4206", "https://localhost:4201"],
            };

Does anyone know what is happening? Thanks.