You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@pagespeed.apache.org by GitBox <gi...@apache.org> on 2018/11/05 19:13:59 UTC

[GitHub] AngelDeaD commented on issue #876: Content Security Policy support.

AngelDeaD commented on issue #876: Content Security Policy support.
URL: https://github.com/apache/incubator-pagespeed-mod/issues/876#issuecomment-435999044
 
 
   Any update on this?
   I have problem with lazy load option in pagespeed. It adds static js code with "onload=" which CSP does not allow, and I can not edit it because CSP adds it, so I can not add nonce or sha to it.
   It would be good, if authors can add web server variables like:
   webpagespeed-nonce
   and
   webpagespeed-sha
   
   If both of them are empty add js code that is added now, if one of them is empty, append another that is not empty to js code and then add it to page source.

----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


With regards,
Apache Git Services