I have a particular customer that is able to come up with all kinds of security
snafus on a regular basis.
The latest is causing our web app to be really foobar in Chrome, Firefox, Edge
IE seems to be OK
Anyone care to provide a 1/2 cup of enlightenment to this wondrous, mystical
area.
The error messages in Developer Tools read something like this:
Refused to apply inline style because it violates the following Content
Security Policy directive: "default-src 'self'". Either the 'unsafe-inline'
keyword, a hash ('sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw='), or a
nonce ('nonce-...') is required to enable inline execution. Note also that
'style-src' was not explicitly set, so 'default-src' is used as a fallback.
A given web page has many, many of these error messages.
Help! Big points to anyone who can provide anything!
Many thanks
Randy Engle, Director
XC2 Software LLC – XC2LIVE!
**********************************************************************
4D Internet Users Group (4D iNUG)
FAQ: http://lists.4d.com/faqnug.html
Archive: http://lists.4d.com/archives.html
Options: https://lists.4d.com/mailman/options/4d_tech
Unsub: mailto:[email protected]
**********************************************************************
