You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.
How to reproduce:
run springboot-plugin example on the different host to host the sample plugin
modify SampleSpringBootService in the springboot-plugin example on your host to include URL of remote plugin:
e.g:
HawtioPluginplugin = newHawtioPlugin(
"samplePlugin",
"./plugin",
"http://192.168.1.169:10001");
```
3.trytoloadthepluginaccessing `http://localhost:10001/actuator/hawtio/sample-plugin` and see the exceptions.
`BecauseecauseitviolatesthefollowingContentSecurityPolicydirective: "script-src 'self'". Notethat'script-src-elem'wasnotexplicitlyset, so'script-src'isusedasafallback.`
Tofixthisthehostofthepluginhastobeaddedinto `connect-src` `script-src` and `style-src` partsoftheCSP
The text was updated successfully, but these errors were encountered:
How to reproduce:
springboot-plugin
example on the different host to host the sample pluginSampleSpringBootService
in thespringboot-plugin
example on your host to include URL of remote plugin:e.g:
The text was updated successfully, but these errors were encountered: