I'm using it in a project where I use also django-csp, so this library automatically enables nonce.
This causes an error in Chrome, even if I added "'unsafe-inline'" to my csp config:
Note that 'unsafe-inline' is ignored if either a hash or nonce value is present in the source list.
Could you make the nonce optional based on a setting?
Hello, thanks for this nice package.
I'm using it in a project where I use also
django-csp
, so this library automatically enablesnonce
. This causes an error in Chrome, even if I added"'unsafe-inline'"
to my csp config:Could you make the
nonce
optional based on a setting?