Content Security Policy directive: "frame-src https
Opened this issue · 1 comments
JasonHoult1981 commented
Refused to frame '' because it violates the following Content Security Policy directive: "frame-src https: mailto: https://XXX-dev-ed.lightning.force.com https://*.visual.force.com *.na116.visual.force.com blob:".
I am receiving this error when loading the page and the blob. It appears to be related to the new Stricter CSP rules. I have set up CSP on both urls and whitelisted the visual.force.com but no affect.
JasonHoult1981 commented
Resolved in Chrome by turning off the setting to download PDF versus viewing in Browser