CSP avoid unsafe-inline for script-src

  • Resolved schalemanie

    (@schalemanie)


    2 years, 6 months ago

    Dear Forum members,

    I have added some CSP headers for my page and wanted to avoided enabeling ‘unsafe-inline’ for script-src. If i leave the unsafe-inline option out in my evolve theme i get error messages due not executed functions e.g. to missing variables (Uncaught ReferenceError: evolve_js_local_vars is not defined) which seem to be implemented as an inline script in the evolve theme.

    Do you have any advise for me how i can used the evolve theme but still have hte unsafe-inline option disabled?

    Thank you very much

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
  • The topic ‘CSP avoid unsafe-inline for script-src’ is closed to new replies.