Web Hosting
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

WordPress fix Reply To: WordPress 4.9 post editor issue with Content Security Policy

Discussion in 'Misc WordPress Requests' started by commando, Nov 20, 2017.

  1. commando

    Guest

    Reply To: WordPress 4.9 post editor issue with Content Security Policy, by commando

    Yes, you’re right, there were It’s definitely CSP related, but I’m not sure what the solution is.

    Before with the CSP I had I got these errors

    https://imgur.com/a/3k5Ho

    I change the CSP as below, and I don’t get the errors in the console any more, but it doesn’t work either.

    The problem seems to be loading / executing “data:” type elements in the page. Anyone know how to fix this?

    For now I’ll just turn CSP off, since it’s non-essential. When I have time I’ll learn more about CSP but if anyone has a quick fix that preserves some of the security I’d appreciate it.

    add_header Content-Security-Policy “default-src ‘self’ data: blob: filesystem: http://www.google-analytics.com ajax.googleapis.com http://www.google.com google.com gstatic.com http://www.gstatic.com connect.facebook.net facebook.com secure.gravatar.com;”;

    Reply To: WordPress 4.9 post editor issue with Content Security Policy
     
    #1

Share This Page

Web Hosting