What is the "csp" directives? The .htaccess can be added to the directory /usr/local/ispconfig/interface/web and even to every directory, which is available initially for access (according to my knowledge of .htaccess matter) (for Munin) your directory suddenly was: /var/cache/munin/www By the way, we can send Header always set X-Frame-Options "SAMEORIGIN" to .htaccess this way: Code: <IfModule mod_headers.c> Header always set X-Frame-Options "SAMEORIGIN" </IfModule>
So, replying to my own post. It is probably monit and not munin that has its own http server. I always mix these two up *lol*
I am not sure what you mean by http-server. As i understand, monit requires access through httpS. In another topic/thread you mentioned about x-frame policy. Definitely, to unlock iframe option for some website to be added inside of another, the above mentioned snippet https://forum.howtoforge.com/threads/munin-in-deb-11-problems-with-403-forbidden.90338/#post-444742 helps me to take off barrier.
Checkout this old post Monit window blank in ISPConfig web GUI where both @Jesse Norell and @nhybgtvfr both shared their solution.