Thứ Bảy, 29 tháng 6, 2024

Issue joomla Content-Security-Policy blocked a JavaScript .htaccess SOLVED

Người đăng: Hồ Bảo Nguyên vào lúc 08:58

Browser error: Content-Security-Policy: The page’s settings blocked a JavaScript eval (script-src) from being executed because it violates the following directive: “script-src 'self' 'unsafe-inline' ...

Reason: host setting or .htaccess block scripts

Solutions: solution 1 or 2
Solution 1: .htaccess check example line

#Header set Content-Security-Policy "script-src 'self' 'unsafe-inline' https://cdn.ckeditor.com https://ajax.googleapis.com/ https://cdn.jsdelivr.net https://js.calltrk.com/ https://birdeye.com/ https://cdn.calltrk.com/ https://www.google-analytics.com/ https://widgets-v7.birdeye.com/ https://www.googletagmanager.com/ https://portal.setmysite.com/; object-src 'none';"

Remove or disable this line


Solution 2: .htaccess admin line s
<IfModule mod_headers.c>
Header always set Content-Security-Policy "script-src 'none'"
</IfModule>

 

 



Nhãn: ,

0 nhận xét:

Đăng nhận xét

Đăng ký: Đăng Nhận xét (Atom)