Michael Romanovsky created CB-9133: -------------------------------------- Summary: CDVFILE NOT WORKING??? Key: CB-9133 URL: https://issues.apache.org/jira/browse/CB-9133 Project: Apache Cordova Issue Type: Bug Reporter: Michael Romanovsky Priority: Critical
I used the instructions here: https://github.com/apache/cordova-plugin-whitelist I have this in my config.xml file: <access origin="*" /> <allow-navigation href="*" /> <allow-intent href="*" /> I have this in my .HTML file: <meta http-equiv="Content-Security-Policy" content="default-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'"> I get these errors: Refused to load the script 'http://d3aq14vri881or.cloudfront.net/kiip.js' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'". Refused to load the script 'cdvfile://localhost/persistent/free.min.js' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'". HELP?! -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@cordova.apache.org For additional commands, e-mail: issues-h...@cordova.apache.org