我想将视频嵌入到我的论坛中,swarmify 脚本已添加到主题部分的 head 标签中,但嵌入视频的代码仍然无法正常工作。
这是脚本:
<script data-cfasync="false">
var swarmoptions = {
swarmcdnkey: "my-key",
iframeReplacement: "iframe",
autoreplace: {
youtube: true
}
};
</script>
<script async data-cfasync="false" src="https://assets.swarmcdn.com/cross/swarmdetect.js"></script>
smarmify 嵌入代码:
<smartvideo class="swarm-fluid" controls playsinline
width="1280" height="720"
src="swarmify://5bfefc57e5eab49134214a6360abc98af927d8e7bd119d013b8e1a73858d3ce3">
</smartvideo>
已将允许的 iframe 设置添加到 swarmify://,www.swarmify.com,https://assets.swarmcdn.com/cross/swarmdetect.js,但仍然无效。
控制台 CSP:
gtm.js?id=GTM-K7MVKZJ:197 [Report Only] Refused to execute inline script because it violates the following Content Security Policy directive: "script-src DISCOURSEFORUM/logs/ DISCOURSEFORUM/sidekiq/ DISCOURSEFORUM/mini-profiler-resources/ DISCOURSEFORUM/assets/ DISCOURSEFORUM/brotli_asset/ DISCOURSEFORUM/extra-locales/ DISCOURSEFORUM/highlight-js/ DISCOURSEFORUM/javascripts/ DISCOURSEFORUM/plugins/ DISCOURSEFORUM/theme-javascripts/ https://assets.swarmcdn.com/cross/swarmdetect.js www.swarmify.com swarmify://5b538821c113d3DKJSKDJSKJ04f66745ef289f87cf770d4a2cbdef6b0b https://assets.swarmcdn.com/cross/swarmdetect.js https://assets.swarmcdn.com https://\\swarmcdn.com". Either the 'unsafe-inline' keyword, a hash ('sha256-iVfcyf2/qxsGQZGUbYG9QQfnQ0Goj7MH5Vk4yG1tcfQ='), or a nonce ('nonce-...') is required to enable inline execution.