GTM usage error

Tomiikcz · January 20, 2020, 8:57pm

Hello to everyone,

when I use prepared gtm container id in our settings in app with correctly GTM ID (f.e. GTM-XYZXYZ) and of course I add specific domain to white list (according to Set up Google Tag Manager for Analytics (GA4) manual) then I have a problem with loading and fetching https://d1i8vaoc4ts7hj.cloudfront.net/5e3fcb4db448a78908a4671b6fb685c7acd13fa3_10854/dist/js-extra/VisitorAPI.js script called from gtm.js core script with message GET https://d1i8vaoc4ts7hj.cloudfront.net/5e3fcb4db448a78908a4671b6fb685c7acd13fa3_10854/dist/js-extra/VisitorAPI.js net::ERR_FAILED and {message: "remote script failed https://d1i8vaoc4ts7hj.cloudf…fb685c7acd13fa3_10854/dist/js-extra/VisitorAPI.js"}.

Second same problem with this is called from NetworkFirst.mjs (Uncaught (in promise) no-response: no-response :: [{"url":"https://d1i8vaoc4ts7hj.cloudfront.net/5e3fcb4db448a78908a4671b6fb685c7acd13fa3_10854/dist/js-extra/VisitorAPI.js"}]).

Could someone give me advice?

Thx a lot.
T

neil · January 20, 2020, 9:46pm

Can you try adding 'unsafe-inline' as Google’s support doc says? If it works, I can add it to our howto instructions.

Tomiikcz · January 21, 2020, 10:55am

So I should insert 'unsafe-inline' https://www.googletagmanager.com to content security policy script src array?

Maybe I don’t understand your reply. But it doesn’t work for me.

neil · January 21, 2020, 3:08pm

Yes, that’s what their doc says needs to be added.

If that’s not permissive enough, you can try allowing anything starting with “https”.

pfaffman · January 21, 2020, 6:31pm

I had this problem recently and that’s what I did to fix it. I didn’t quite understand why it appeared. I added https: and unsafe-inline. Having it be so permissive seemed to be bypassing something that seems like it should be important, but this is what solved the problem.

It would seem like if Google requires this then the plugin should do it automatically. If my site broke, then I’d think that every site will break (when they upgrade again?).

neil · January 21, 2020, 8:11pm

GTM support isn’t a plugin, it’s a setting in core Discourse. There’s currently a note about CSP in the setting description.

But I’m guessing you’re thinking of the ad plugin, which is another story. It includes multiple ad options, all of them disabled when you install the plugin. Each setting should probably have a note about CSP so people know about it.

pfaffman · January 21, 2020, 8:18pm

I’m guessing so too! I’ve tried not to learn about this. I don’t know the difference between GTM, Adsense, and DFP.

Maybe so. All I know is that a site had the Google Ads working and then there was an upgrade and then the stopped working. I got blamed.

If Google [ad manager|dfp|ad plugin|gtm] requires some CSP setting to change because [Google|Discourse] changed something, it’d be nice to, maybe, create one of those annoying Dashboard notices about it?

Topic		Replies	Views
Google Tag Manager (gtm) script blocked by CSP data & reporting analytics	4	1999	July 3, 2023
Cant get google tag manager to work data & reporting analytics	6	1005	September 29, 2023
GTM Refused to load the script because it violates the Content Security Policy data & reporting	3	2292	June 16, 2021
GTM/GA - universal analytics error (debug not working, followed guide) support	4	1495	September 25, 2020
Implementing Google Tag Manager with Discourse data & reporting	23	7954	July 14, 2016

GTM usage error

Related Topics