GTM Refused to load the script because it violates the Content Security Policy

narayanan · June 16, 2021, 1:06pm

Hi,

I’m trying to add new GTM container to discourse. We get

Refused to load the script "https://forums.techsoup.org/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1660101200' because it violates the following Content Security Policy directive: "script-src https://forums.techsoup.org/logs/ https://forums.techsoup.org/sidekiq/ https://forums.techsoup.org/mini-profiler-resources/ https://forums.techsoup.org/assets/ https://forums.techsoup.org/brotli_asset/ https://forums.techsoup.org/extra-locales/ https://forums.techsoup.org/highlight-js/ https://forums.techsoup.org/javascripts/ https://forums.techsoup.org/plugins/ https://forums.techsoup.org/theme-javascripts/ https://forums.techsoup.org/svg-sprite/ https://www.googletagmanager.com/gtm.js 'nonce-0cac1a2cef90863cc692ed7f68c5f4f0'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback"

neil · June 16, 2021, 1:46pm

You need to add new scripts to your content security policy.

narayanan · June 16, 2021, 4:29pm

Can you let us know how to integrate with Twitter analytics.

system · July 3, 2023, 9:27am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.