cfontecha's Replies | ww.wp.xz.cn

Forum Replies Created

Viewing 5 replies - 1 through 5 (of 5 total)

Forum: Plugins
In reply to: [No unsafe-inline] where can i validate the CSP

Thread Starter cfontecha
(@cfontecha)

2 years, 1 month ago

I’ve checked the log and can’t find anything.

I have similarly disabled security plugins and cleared the server cache to no avail.

However, when I activate Test policy with Content-Security-Policy-Report-Only, the policy appears in test mode.

Forum: Plugins
In reply to: [No unsafe-inline] where can i validate the CSP

Thread Starter cfontecha
(@cfontecha)

2 years, 1 month ago

Yes, it is a strange case, because as you mention, the upgrade-insecure-request option is disabled, yet it is the only one that appears in the CSP inspection.
There is no CSP declared in the .htaccess and the only plugin I have tried to test on the site is this one. Additionally, it does not have any cache plugin.
I am trying to purge the cache from the server.

Forum: Plugins
In reply to: [No unsafe-inline] where can i validate the CSP

Thread Starter cfontecha
(@cfontecha)

2 years, 1 month ago

Thank you for your reply.

These are all the settings options

I don’t know if there is a configuration error.
or if it is missing some kind of additional setting.

Thank you in advance for your support and answer.

Best regards

Forum: Plugins
In reply to: [No unsafe-inline] where can i validate the CSP

Thread Starter cfontecha
(@cfontecha)

2 years, 1 month ago

try again to create the CSP but it is still only upgrade-insecure-requests.

What can I do in this case?

Forum: Plugins
In reply to: [No unsafe-inline] where can i validate the CSP

Thread Starter cfontecha
(@cfontecha)

2 years, 2 months ago

My apologies, I had disabled the plugin protection. I have it enabled again now.

I have been building a policy manually, but the process with your plugin is much more helpful.

Viewing 5 replies - 1 through 5 (of 5 total)