[
https://issues.apache.org/jira/browse/CB-9133?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14589095#comment-14589095
]
Michael Romanovsky commented on CB-9133:
----------------------------------------
Thanks for picking this up. I did add some more comments on Github. Can you
look at them? (I am not 100% sure how it all works so I don't know if my
changes were completely correct.)
> CDVFILE NOT WORKING???
> ----------------------
>
> Key: CB-9133
> URL: https://issues.apache.org/jira/browse/CB-9133
> Project: Apache Cordova
> Issue Type: Bug
> Reporter: Michael Romanovsky
> Assignee: Steve Gill
> Priority: Critical
>
> I used the instructions here:
> https://github.com/apache/cordova-plugin-whitelist
> I have this in my config.xml file:
> <access origin="*" />
> <allow-navigation href="*" />
> <allow-intent href="*" />
> I have this in my .HTML file:
> <meta http-equiv="Content-Security-Policy" content="default-src *; style-src
> 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'">
> I get these errors:
> Refused to load the script 'http://d3aq14vri881or.cloudfront.net/kiip.js'
> because it violates the following Content Security Policy directive:
> "script-src 'self' 'unsafe-inline' 'unsafe-eval'".
> Refused to load the script 'cdvfile://localhost/persistent/free.min.js'
> because it violates the following Content Security Policy directive:
> "script-src 'self' 'unsafe-inline' 'unsafe-eval'".
> HELP?!
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
