Support Content Security Policy (CSP) on inline scripts

klaro-org / klaro-js

Klaro Privacy Manager. An open-source, privacy-friendly & compliant consent manager for your website.

https://klaro.org

Other

1.2k stars 255 forks source link

Open bechold opened 2 years ago

bechold commented 2 years ago

Content Security Policy (CSP) blocks inline scripts unless a specific 'nonce' is added

Header: Content-Security-Policy: default-src 'none';script-src 'self' 'nonce-base64-value'

Html:

Githubissues.

Githubissues is a development platform for aggregating issues.