Firefox: Allow user to disable external embedded websites protection.

Suggestion:

It would be very helpful if the browser’s anti-clickjacking protection, specifically the feature that prevents websites from being embedded in other pages using mechanisms like X-Frame-Options or Content Security Policy (CSP), were user-configurable. Now, I understand the purpose of this restriction. It helps prevent clickjacking attacks by blocking embedded content from external sites. However, this limitation can also cause certain websites to break or become unusable especially if you can not open the page in a new window, like the help article suggests.

I suggest adding a clear and easily accessible toggle within the settings menu, such as in the shield or lock icon panel, allowing users to enable or disable this protection when needed. While the browser’s built-in security measures are appreciated, users should have the flexibility to choose which protections remain active. A dedicated section outlining all security features, with default settings enabled, would improve transparency and usability. Additionally, offering both global controls and per-site overrides (based on domains and subdomains) would provide more precise control over the browsing experience.

Reason:

I keep encountering the following error:

Firefox Can’t Open This Page

To protect your security, example.com will not allow Firefox to display the page if another site has embedded it. To see this page, you need to open it in a new window.