This issue is resolved by setting the properties individually, e.g. div.style.width = "100%"
But the YouTube iFrame API (www-widgetapi.js) copies the styles from the videojs div to the iframe which results in CSP violations again. This is why all inline styles are wrapped in the window.VIDEOJS_NO_DYNAMIC_STYLE flag provided by videojs
Setting
style
orcssTexT
attribute directly violates the CSPstyle-src-attr
.https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/style-src-attr#violation_cases
This issue is resolved by setting the properties individually, e.g.
div.style.width = "100%"
But the YouTube iFrame API (
www-widgetapi.js
) copies the styles from the videojsdiv
to theiframe
which results in CSP violations again. This is why all inline styles are wrapped in thewindow.VIDEOJS_NO_DYNAMIC_STYLE
flag provided by videojshttps://videojs.com/guides/skins/#disabling-additional-style-elements