TechQA.

Refused to load the script because it violates the following Content-Security-Policy

621 views Asked by At

I didn't used google tag manager url in my code but it still shows the ERROR and HERE is the Error.

ERROR

Refused to load the script 'https://consent.trustarc.com/v2/notice/jznryc' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' https://www.googletagmanager.com". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

this is the code i am using.

<meta http-equiv="Content-Security-Policy" content=
          "default-src *; 
          style-src 'self' 'unsafe-inline' ; 
          script-src 'self' 'unsafe-inline' https://consent.trustarc.com ; 
          script-src-elem 'self' 'unsafe-inline' ">
html google-tag-manager content-security-policy trusted-web-activity script-src
Original Q&A
1

There are 1 answers

0
Halvor Sakshaug On

The most likely explanation is that two (or more) policies are set. Something is setting another CSP, likely in a response header. You will need to find the policy and modify/remove it.

Related Questions in HTML

Related Questions in GOOGLE-TAG-MANAGER

Related Questions in CONTENT-SECURITY-POLICY

Related Questions in TRUSTED-WEB-ACTIVITY

Related Questions in SCRIPT-SRC

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions