Content security Policy – Refused to load the script from google analytics – CSP rules correct

I have a issue when setting CSP rules on server.

In the server , I set: Header Content-Security-Policy to:

default-src 'self';script-src 'self' 'report-sample' www.google-analytics.com

When refresh browser , I got :
enter image description here

When check the js source , it’s the library jquery.

How I can fix it ?
Thanks

config csp :
enter image description here

Error on browser
enter image description here

Source: Symfony Questions

Was this helpful?

0 / 0

Leave a Reply 0

Your email address will not be published. Required fields are marked *