Bug: Incompatible with Strict CSP style-src

Question

Bug: Incompatible with Strict CSP style-src

dannyDNS opened this issue 6 months ago · comments

dannyDNS commented 6 months ago

Describe the bug

The SDK doesn't work without 'unsafe-inline' style-src in CSP

Steps

Set a CSP without 'unsafe-inline' style-src and try to use the SDK.

Expected behavior

The SDK works without 'unsafe-inline' styles.

Version

No response

Additional info

No response

Desktop

No response

Smartphone

No response

kakashigr · Answer 1 · Tue Jun 11 2024 05:28:09 GMT+0800 (China Standard Time)

Also if you're using the "Cross-Origin-Opener-Policy" header with "same-origin" you need to change to:
'Cross-Origin-Opener-Policy': 'same-origin-allow-popups',

Jungho Bang · Answer 2 · Fri Jun 14 2024 04:29:11 GMT+0800 (China Standard Time)

please try sdk 4.0