open-cti-demo-adapter icon indicating copy to clipboard operation
open-cti-demo-adapter copied to clipboard

Published 20 hours ago verified publisher icon developerforce

Content Security Policy Directive

Open caseyboyd opened this issue 6 years ago • 2 comments

Refused to execute JavaScript URL because it violates the following Content Security Policy directive: "script-src 'self' 'nonce-5310cb31-6b69-5584-26e5-3bd833131f97' chrome-extension: 'unsafe-eval' https://sfdc.azureedge.net *.na57.visual.force.com 'unsafe-eval' https://ssl.gstatic.com/accessibility/". Either the 'unsafe-inline' keyword, a hash ('sha256-...'), or a nonce ('nonce-...') is required to enable inline execution.

Getting this error when executing "sforce.opencti.screenPop"

Any ideas?

caseyboyd avatar Aug 20 '18 14:08 caseyboyd

@caseyboyd did you find any solution to this? I am still facing this issue.

nikhilcloudroute avatar Jun 20 '19 10:06 nikhilcloudroute

for development purpose, i have installed CSP plugin in chrome and going forward. @caseyboyd @nikhilcloudroute hope this may helps.

As far as i know we need to write .htaccess rule and need to add these values inside it.

kishoreaoe avatar Jul 18 '22 17:07 kishoreaoe