diff --git a/swag/nginx/ssl.conf b/swag/nginx/ssl.conf
index 2ec3cd4..0b10281 100644
--- a/swag/nginx/ssl.conf
+++ b/swag/nginx/ssl.conf
@@ -29,7 +29,7 @@ ssl_stapling_verify on;
 ssl_trusted_certificate /config/keys/cert.crt;
 
 # Optional additional headers
-add_header Content-Security-Policy "default-src 'none'; connect-src 'self'; font-src 'self'; img-src 'self'; manifest-src 'self'; media-src blob:; script-src 'self' 'unsafe-inline' blob:; style-src 'self' 'unsafe-inline'; block-all-mixed-content; base-uri 'none'";
+add_header Content-Security-Policy "default-src 'none'; connect-src 'self'; font-src 'self'; img-src 'self'; manifest-src 'self'; media-src blob:; script-src 'self' 'unsafe-inline' blob:; style-src 'self' 'unsafe-inline'; frame-ancestors 'none' block-all-mixed-content; base-uri 'none'";
 add_header Permissions-Policy "accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), clipboard-read=(), clipboard-write=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), screen-wake-lock=(), serial=(), sync-xhr=(), usb=(), xr-spatial-tracking=()" always;
 add_header Referrer-Policy "same-origin" always;
 add_header X-Content-Type-Options "nosniff" always;
@@ -38,4 +38,4 @@ add_header X-XSS-Protection "0" always;
 add_header Cross-Origin-Resource-Policy same-origin;
 add_header Cross-Origin-Embedder-Policy require-corp;
 add_header Cross-Origin-Opener-Policy same-origin;
-add_header Expect-CT "enforce, max-age=63072000";
\ No newline at end of file
+add_header Expect-CT "enforce, max-age=63072000";