-
Notifications
You must be signed in to change notification settings - Fork 43
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
'unsafe-inline' is ignored if either a hash or nonce value is present in the source list #31
Comments
That's not really related to this library, but how you are using Content Security Policy. You can't use inline styles if you specify a nonce. |
|
i dont use nonce on lib with inline style |
But you have added a nonce to the CSP. Your browser is ignoring unsafe-inline since a nonce is in the CSP. |
how i can resolve it? |
Yes I'm seeing that issue too ... the helper tag isn't generating a nonce value. |
I have been unable to reproduce this on Chrome. As a sidenote, Chrome's Elements view shows the attribute as empty but the value was actually delivered if you check the response in the Network tab. |
nonce will not be visible in inspect element if you rightclick the page and click on view source code there you can see the nonce values |
I got error while using this lib
The text was updated successfully, but these errors were encountered: