diff --git a/authentik/brands/middleware.py b/authentik/brands/middleware.py
index 36b19c66ec..c4ea856657 100644
--- a/authentik/brands/middleware.py
+++ b/authentik/brands/middleware.py
@@ -60,7 +60,9 @@ class BrandCSPHeaderMiddleware:
     def get_csp(self, request: HttpRequest) -> str:
         brand: "Brand" = request.brand
         elements = self.default_csp_elements.copy()
-        elements["frame-ancestors"] = [f"https://{brand.domain}"]
+        elements["frame-ancestors"] = [
+            f"{'https' if request.is_secure() else 'http'}://{brand.domain}"
+        ]
         return ";".join(f"{attr} {" ".join(value)}" for attr, value in elements.items())
 
     def __call__(self, request: HttpRequest) -> HttpResponse: