Error in the browser console

  • Resolved luciaredondo

    (@luciaredondo)


    2 years, 1 month ago

    Good morning!

    I have started to get the error in the browser console: [Report Only] Refused to execute inline script because it violates the following Content Security Policy directive: “script-src ‘none'”. Either the ‘unsafe-inline’ keyword, a hash (‘sha256-PxjnZyhY6fbHzjlPnSbVWO/Ljy3VBYgVmZM9N6h/9pI=’), or a nonce (‘nonce-…’) is required to enable inline execution.

    It has been suddenly and I don’t know what I could do to solve the error. If I deactivate the plugin it disappears.

    I am waiting for your answer,
    Best regards

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter luciaredondo

    (@luciaredondo)

    If you view it in incognito mode, the error does not appear.

    Plugin Author micropat

    (@micropat)

    The Report Only “error” is totally fine (if slightly annoying to see in DevTools) — it just means the page was loaded with the content-security-policy-report-only header so a tool of yours can provide insight into what assets are being loaded on your pages.

    Really, this console “error” should be a warning in DevTools to avoid confusion.

    Adding to the confusion, some security plugins or services implement the header only on a percentage of page requests. Cloudflare’s optional Page Shield is one such service.

    For sites that go beyond “Report Only” and implement a Content Security Policy, AddToAny supports that as well.

    Thread Starter luciaredondo

    (@luciaredondo)

    Thank you very much

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Error in the browser console’ is closed to new replies.