tizzick / rikaikun

Automatically exported from code.google.com/p/rikaikun
0 stars 0 forks source link

CSP errors from inlined style #105

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?
1. Use an app that enforces a strict CSP
2. Open Console
3. Observe Errors

What is the expected output? What do you see instead?
I expect to see no error in the console

Instead I see:
[Report Only] Refused to apply inline style because it violates the following 
Content Security Policy directive: "style-src 'self'". Either the 
'unsafe-inline' keyword, a hash ('sha256-...'), or a nonce ('nonce-...') is 
required to enable inline execution.
 jquery-1.7.1.min.js:2(anonymous function) jquery-1.7.1.min.js:2(anonymous function) jquery-1.7.1.min.js:2(anonymous function) jquery-1.7.1.min.js:4

What version of the product are you using? On what operating system?
rikaikun 0.8.9
Chrome Version 37.0.2062.124
OSX 10.9.3

Please provide any additional information below.

Original issue reported on code.google.com by a.aa.aki...@gmail.com on 4 Nov 2014 at 7:49

GoogleCodeExporter commented 8 years ago
Discovered this while developing an Ember.js app - they now have CSP on by 
default.

Original comment by a.aa.aki...@gmail.com on 4 Nov 2014 at 7:50