I have posted the detail question on Stack Overflow: discourse email activation no longer works due to Content Security Policy violation - Stack Overflow I boostrapped discourse using my custom app.yml which uses the cloudflare template like so: templates: - "templates/postgres.template.yml" -…

This is a bit embarrassing - but I have found out why this was. Once everything was working without cloudflare, I added the nginx pagespeed module to my nginx config (pagespeed on;) This was the reason for this error :frowning: I found this out browsing through the console within DevTools. I apol…

External nginx pagespeed module causes Security Policy violation

インストール

Falco (Falco) 2019 年 6 月 27 日午後 3:24 12

That’s a bad idea in this day and age:

「いいね！」 2

トピック		返信	表示
Keyboard and mouse stopped working + content-security-policy error Installation nginx	7	439	2023 年 11 月 6 日
Refused to load the script 'site.com/cdn-cgi/speculation' because it violates the following Content Security Policy directive Support content-security-policy	4	8131	2024 年 10 月 22 日
Mitigate XSS Attacks with Content Security Policy Site Management how-to , content-security-policy	32	24078	2023 年 6 月 13 日
Fresh Discourse install on digitalocean, cannot activate account Installation	15	1445	2019 年 1 月 21 日
After upgrade the content security policy script src for GTM Data & reporting	4	1847	2021 年 4 月 13 日

External nginx pagespeed module causes Security Policy violation

関連トピック