NinjaFirewall breaks some features of Gutenberg

  • Resolved Li-An

    (@li-an)


    6 months, 1 week ago

    Hello, I meet a very strange problem. When NinjaFirewall is activated, some features of Gutenberg and Advanced Editor Tools are broken.

    Gutenberg: if I resize an image in image block through block options, the setting is not applied in frontend.
    Advanced Editor Tools?: text highlighting (and maybe some else functionnalities) is broken

    Tested with no other plugin installed and default WP them.

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Do you see any error in the firewall log ? And in your browser’s console ( CTRL + shift +J ) ?

    Thread Starter Li-An

    (@li-an)

    OK, when Ninjafirewall is activated, I?have this errors

    un-wordpress-vraiment-protege/:1 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-kumTOXTECMlZlEPt4gkx16lFY8BKArVQxYi+tYtQGhI='), or a nonce ('nonce-...') is required to enable inline execution.

un-wordpress-vraiment-protege/:1 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-loWwX90NMsdpJFNy6pl9S/HLT5aHjv7S3FENmKRJAWI='), or a nonce ('nonce-...') is required to enable inline execution.

un-wordpress-vraiment-protege/:49 Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-0EZqoz+oBhx7gF4nvY2bSqoGyy4zLjNF+SDQXGp/ZrY='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.

un-wordpress-vraiment-protege/:49 Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-lVL37Jnp0KMQBnF80CGVoEAIGanumjTg+588xju+WGw='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.

    Plugin Author nintechnet

    (@nintechnet)

    Click the “Firewall Policies > Advanced Polices” tab and check the “Set Content-Security-Policy for the website frontend” and “Set Content-Security-Policy for the WordPress admin dashboard” policies. You likely have a script-src 'self' directive that is causing the problem. If it’s in the backend, then remove it from the “Set Content-Security-Policy for the WordPress admin dashboard” field.

    Thread Starter Li-An

    (@li-an)

    OK, thanks, it seems to work.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘NinjaFirewall breaks some features of Gutenberg’ is closed to new replies.