Remove unnecessary antiframe protection in portal javascript
In 2.0, we use CSP to disable portal in a frame:
# Deny using portal in frame except if it is required
unless ( $req->frame or $self->conf->{portalAntiFrame} == 0 ) {
push @{ $res->[1] }, 'X-Frame-Options' => 'DENY';
$csp .= "frame-ancestors 'none';";
}
But we still have a javascript in portal to disable frame. I think this one should be removed.