You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cordova.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2016/02/16 05:34:18 UTC

[jira] [Commented] (CB-9133) CDVFILE NOT WORKING???

    [ https://issues.apache.org/jira/browse/CB-9133?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15148079#comment-15148079 ] 

ASF GitHub Bot commented on CB-9133:
------------------------------------

Github user agamemnus commented on the pull request:

    https://github.com/apache/cordova-plugin-whitelist/pull/9#issuecomment-184513731
  
    Wew lad. I think I just had a heart attack...
    
    I don't really know where to begin to answer your question. The whitelist addition borked years of Cordova functionality.
    
    https://issues.apache.org/jira/browse/CB-9133


> CDVFILE NOT WORKING???
> ----------------------
>
>                 Key: CB-9133
>                 URL: https://issues.apache.org/jira/browse/CB-9133
>             Project: Apache Cordova
>          Issue Type: Bug
>          Components: Plugin Whitelist
>            Reporter: Michael Romanovsky
>            Assignee: Sergey Shakhnazarov
>            Priority: Critical
>
> I used the instructions here:
> https://github.com/apache/cordova-plugin-whitelist
> I have this in my config.xml file:
>     <access origin="*" />
>     <allow-navigation href="*" />
>     <allow-intent href="*" />
> I have this in my .HTML file:
> <meta http-equiv="Content-Security-Policy" content="default-src *; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval'">
> I get these errors:
> Refused to load the script 'http://d3aq14vri881or.cloudfront.net/kiip.js' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'".
> Refused to load the script 'cdvfile://localhost/persistent/free.min.js' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'".
> HELP?!



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@cordova.apache.org
For additional commands, e-mail: issues-help@cordova.apache.org