You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As a workaround either downgrade to 3.2.13 or for more security keep using >= v3.2.14 and add a custom nginx config which must be mapped to /etc/nginx/conf.d/default.conf for balloon-web instances.
Note that an additional wopi client besides loolwsd if configured also needs to be added manually.
The web client v4 will most likely be served by node so that we are able to customize such headers as this is not possible with static content serving mechanism like nginx.
Describe the bug
Content Security Policy: The page’s settings blocked the loading of a resource at https://xxx/.well-known/openid-configuration (“default-src”).
To Reproduce
Install v3.2.14 with a configured oidc provider.
Expected behaviour
No such csp error.
Environment
Additional context
Note this is a follow up issue from #292
The text was updated successfully, but these errors were encountered: