Refused to load the script 'https://www.gstatic.com/charts/loader.js' because it violates the following Content Security Policy

Question

Refused to load the script 'https://www.gstatic.com/charts/loader.js' because it violates the following Content Security Policy

nabeeleteam opened this issue 4 years ago · 1 comments

What Version?

"khill/lavacharts":  "^3.1",

Issue

Refused to load the script 'https://www.gstatic.com/charts/loader.js' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

Controller Code (chart creation code)

Controller code works fine.

View Code

View code works fine

Answer 1 · 2021-05-28T16:32:09.000Z

Work-arround:
script-src: gstatic.com 'self' 'unsafe-inline' 'unsafe-eval'