blueskywebdesign
Forum Replies Created
Viewing 2 replies - 1 through 2 (of 2 total)
-
Forum: Plugins
In reply to: [Headers Security Advanced & HSTS WP] Additional CharactersHi, I see you are busy updating. I got this now in Settings > Headers Security Advanced & HSTS WP
Refused to apply style from ‘https://domain.com/wp-content/plugins/headers-security-advanced-hsts-wp/assets/css/style-dist.css?ver=5.1.6’ because its MIME type (‘text/html’) is not a supported stylesheet MIME type, and strict MIME checking is enabled.Understand this error
load-scripts.php?c=0&load%5Bchunk_0%5D=jquery-core,jquery-migrate,utils,wp-polyfill&ver=6.8.3:5Forum: Plugins
In reply to: [Headers Security Advanced & HSTS WP] Additional CharactersGood morning. Fix confirmed.
- Due to the CSP policy blocking resources (such as style-src and script-src), I found it easier to remove the Headers Security Advanced & HSTP WP entry from the .htaccess file.
- Once inside WP, I uploaded the updated plugin via the “Plugins > Add Plugin > Upload Plugin>” Upon activation, the site broke again. I was able to scroll down to the “Plugins > Installed Plugins” section and “deactivate” HSTP. The website returned to normal.
- I then reactivated HSTP, and the plugin installed the default .htaccess setting (upgrade-insecure-requests).
- I then added my own policy, saved and verified the correct entry to the .htaccess file.
On a secondary website I repeated step 1. On step 2, I deactivated the plugin, then updated the plugin via the “update plugin” option in WP. The HSTP settings reverted to the default settings.
Viewing 2 replies - 1 through 2 (of 2 total)