According to Mitigate XSS Attacks with Content Security Policy it’s possible to add a set of sources to the CSP policies. I think it would be a great thing to add a group of sources like the ones above for Google AdSense, that way the plugin is easier to setup for non-advanced users. CSP Violation…

Agreed! I recently had ads stop working on a site for just this reason and it took me a while to track it down.

Is that actually enough? Seems like there are always other assets coming from other domains that cause more CSP violations even with the google*.com ones listed. And google is free to change where the ad assets come from at any time. Also it would be surprising if someone installs the plugin and sud…

It’s not, but is a good start, Google also sends from localized domains as google.com.mx, or google.co.ve. The other thing, would be to add the CSP impass to the plugin documentation, and let everyone to handle how to work it out.

[画像] marianord: add the CSP impass to the plugin documentation That was added in last September: Discourse Advertising Plugin (Ads)

[画像] pfaffman: I recently had ads stop working on a site for just this reason and it took me a while to track it down. :raised_hand: Same here. It’s always dangerous (bad practice) to enable restrictive settings by default, especially for upgrades. Took a while a figure out what is broken. (…

We’re not going to give Google js the keys to your community by default, and we can’t add a suggested list of sources to add to CSP settings given how the official Google doc doesn’t include all the necessary sources and can change them at any time (and already has?). Having gone through this with a…

プラグインに CSP ソースを追加

サポート

Falco (Falco) 2020 年 1 月 31 日午後 4:35 5

それは昨年9月に追加されました: Discourse Advertising Plugin (Ads)

トピック		返信	表示
Unable to get Google Ad Manager (DFP) ads to show up Support	3	828	2022 年 11 月 1 日
Adsense CSP Support advertising	0	169	2024 年 6 月 14 日
Google Ads Not Displaying Support	11	1328	2023 年 1 月 24 日
Google Ads not showing Support	9	623	2023 年 7 月 7 日
We couldn't find the code on your site Support advertising	9	2373	2022 年 10 月 18 日

プラグインに CSP ソースを追加

関連トピック