it seemed some new elements may be introduced in CSP3, the document
seemed to be dated 6 Nov 25. pretty recent
https://www.w3.org/TR/CSP3/
script-src-elem is there
On 02/12/2025 16:45, andrew goh via users wrote:
oops my goof,
it seemed that
[Report Only] Refused to load the script
'http:/
oops my goof,
it seemed that
[Report Only] Refused to load the script
'http://localhost:8080/wicket/resource/com.test.MyPage/myPage-ver-1764644245913.js'
because it violates the following Content Security Policy directive:
"script-src-elem 'none'".
is just a warning, debugging javascript in
hi,
I'm confronting an issue that I'm not sure how to resolve short of
perhaps changing the wicket core code related to CSP directive
script-src-elem.
I'm currently using Apache Wicket 9.x, and it generates a CSP header as
like:
Content-Security-Policy : default-src 'none'; script-src
'st
