ionic framework - Cordova Content Security Policy -


i have cordova app , after upgrading (5.0.0) i'm unable call resource @ all. i've added whitelist plugin , added following tag index.html

<meta http-equiv="content-security-policy" content="default-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.azure-mobile.net localhost:1337 *.ajax.aspnetcdn.com">

i got following errors:

refused load script 'http://ajax.aspnetcdn.com/ajax/mobileservices/mobileservices.web-1.2.5.min.js' because violates following content security policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval' *.azure-mobile.net localhost:1337 *.ajax.aspnetcdn.com".

refused load script 'http://localhost:1337/vorlon.js' because violates following content security policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval' *.azure-mobile.net localhost:1337 *.ajax.aspnetcdn.com".

i've tried default policy should allow everything, still no luck.

i've added following config.xml file

<access origin="*" /> <allow-navigation href="*" />

and using following plugins:

c:\projects\tavlaapp>cordova plugin com.microsoft.azure-mobile-services 1.2.7 "windows azure mobile services" cordova-plugin-whitelist 1.0.1-dev "whitelist" nl.x-services.plugins.calendar 4.3.4 "calendar" nl.x-services.plugins.insomnia 4.0.1 "insomnia (prevent screen sleep)" org.apache.cordova.inappbrowser 0.6.0 "inappbrowser"

any idea's try?

wildcards accepted, scheme, port, or in leftmost position of hostname: 

*://*.example.com:*

...this match subdomains of example.com (but not example.com itself), using scheme, on port.

the key here, you, might part in bold above.

you're specifying:

localhost:1337  *.ajax.aspnetcdn.com

but yet calling 

http://ajax.aspnetcdn.com  http://localhost:1337

maybe change 

<meta http-equiv="content-security-policy" content="default-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.azure-mobile.net http://localhost:1337 http://ajax.aspnetcdn.com">

i'm specifying port, replace "http" *

hopefully helps, or leads in right direction.


Comments

Post a Comment

Popular posts from this blog

android - MPAndroidChart - How to add Annotations or images to the chart -

i working latest mpandroidchart library , looking way add annotations or images clickable. example: once data reaches value event occurs want able display user - there multiple events can occur annotations (not sure if right word) or image added @ point in chart. any pointers welcome. check documentation of yaxis . focus on setspacetop(...) , setaxismaxvalue(...) methods. for background: bar-shadow , disable calling: barchart.setdrawbarshadow(false) or change color: bardataset.setbarshadowcolor(int color)
Read more

javascript - Add class to another page attribute using URL id - Jquery -

i have attached id url. ex: when click link 1 , has #tab-2 id , takes me landing page. in landing page have find element has #tab-2 id have add class .active . i tried no luck. please 1 correct code. thanks js fiddle link html <div class="menu"> <ul> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-2">link 1</a></li> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-44">link 2</a></li> <li><a href="http://jsfiddle.net/gscyoa0j/1/#tab-74">link 3</a></li> </ul> </div> landing page <div class="tab"> <ul> <li><a id="tab-2" class="active" >link 1 content</a></li> <li><a id="tab-44" >link 2 content</a></li> <li><a id="tab-74" >link 3 content</a></l...
Read more

firefox - Where is 'webgl.osmesalib' parameter? -

i'm trying webgl running on firefox (v37.0.2) via software acceleration mesa. tried following steps have been stated in article: http://www.binarytides.com/enable-webgl-firefox-ubuntu/ however, unable find parameter named ' webgl.osmesalib ' in about:config section? has been removed (or renamed)? if yes, how should instruct firefox use mesa's software acceleration webgl? looks support osmesa removed in favour llvmpipe.
Read more