New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CSP directive blocks access to Overpass server #1993
Comments
Well we work on the basis of hostnames so it shouldn't matter how many servers they resolve to, or are you saying that |
It looks to me like they are just two DNS entries and there is no redirection going on. Certainly the query tool seems to be working for me in Firefox. |
And in Chrom(ium) as well. |
Which Chrome version are you on? I'm getting this error since today on Version 69.0.3497.92 (Official Build) (64-bit) |
Ah, sorry for the noise, that's Switcheroo extension triggering this Javascript error... Closing here. |
Chrome 69 refuses to access Overpass API due to:
openstreetmap-website/app/controllers/application_controller.rb
Line 416 in 1285bcb
Error message:
Refused to connect to 'https://lz4.overpass-api.de/api/interpreter' because it violates the following Content Security Policy directive: "connect-src 'self' piwik.openstreetmap.org nominatim.openstreetmap.org overpass-api.de router.project-osrm.org graphhopper.com".
-> Both
lz4.overpass-api.de
andz.overpass-api.de
need to be added here as well.overpass-api.de
is just an alias for those two production servers.The text was updated successfully, but these errors were encountered: