Answer the question
In order to leave comments, you need to log in
S
S
Sergey Kiryanov2019-09-18 17:01:43
Sergey Kiryanov, 2019-09-18 17:01:43
Content-Security-Policy error, how to fix?
htaccess has a line
Header set Content-Security-Policy "default-src * data: 'unsafe-inline' 'unsafe-eval'; script-src * data: 'unsafe-inline' 'unsafe-eval'; object-src * data: 'unsafe-inline' 'unsafe-eval'; style-src * data: 'unsafe-inline' 'unsafe-eval'; img-src * data: 'unsafe-inline'"Which apparently does not allow downloading data from https://static.landbot.io giving an error:
landbot-widget-1.0.0.js:22 Refused to load the stylesheet 'blob: https://myurl.url/ ' because it violates the following Content Security Policy directive: "style-src * data: 'unsafe-inline' 'unsafe-eval'". Note that 'style-src-elem' was not explicitly set, so 'style-src' is used as a fallback.
How to allow https://static.landbot.io?
I would like in the example of my htaccess because many have already used the options.
2 answer(s)
@Dizzy221
Here the js script has a bummer when connecting styles using blob.
Find
D
dodo512, 2019-09-18 @Dizzy221
landbot-widget-1.0.0.js:22 Refused to load the stylesheet 'blob:
Here the js script has a bummer when connecting styles using blob.
Find
style-src *and addblob:style-src * blob:
Similar questions
M
F
R
M
P
prox30002016-07-05 10:29:55
Is it possible to enumerate types separated by commas in Content-Type?
1Reply
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question