Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
dllweb2017-01-25 23:05:40
JavaScript
dllweb, 2017-01-25 23:05:40

Ajax request to my server from tampermonkey environment is not executed why?

Hello everyone, I don’t know what to do, on the server the file responsible for returning the script to the Ajax request has the header
header('Access-Control-Allow-Origin: *');
However, I still see the same message in the Chrome browser console

[Report Only] Refused to connect to ' apis.example.ru/extension.php ' because it violates the following Content Security Policy directive: "default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe- eval'https:wss:". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.

I'm still dumb and I don't understand what this means, where can I fix the situation so that my server can give data to the user script in the tampermonkey extension

PS: I form Ajax in the user script via jquery - yes, it is connected there and works fine.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
T
Timofey2015-04-01 11:13:34
sails.js impressions? 5Reply
F
freestm2017-04-07 22:31:58
How to transfer the execution of the program to the server? 6Reply
P
P_Alexander2019-09-13 08:14:10
I downloaded the file and it is written to stdout, how can I drive it into a file now? 2Reply
A
Albadur2019-09-16 22:10:11
How to install a site on Django in the ISPmanager panel? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question