noodlesjtb12
Chevereto Member
Hi all, I've been trying to add a Content Security Policy to my website for quite some time now, and I can, but is there a way to get the CSP to work without using 'unsafe-inline' inside script-src? There was another post about CSP, and I think someone said it won't be added as CSP is deprecated, but it's not. (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy)
Could anyone provide some insight on the params I'd need to specify in my CSP to achieve this? Or is it just not possible?
Regards.
Could anyone provide some insight on the params I'd need to specify in my CSP to achieve this? Or is it just not possible?
Regards.