Menu
Feedback
Start here
Tutorials
Frequently asked questions
Known issues
Troubleshooting
Support rules
Announcements
Status
Developer Portal
Known issues
Portal
Restrict the default-src of the header Content Security Policy could break the Checkout
Portal
ID: 763359
Backlog
Published on3/2/2023
Last updated on3/2/2023
1 min read

Summary

Restricting the Content Security Policy header can cause checkout files not to be loaded. For example, the default-src 'self' configuration can cause files coming from vtex.com not to be loaded

Simulation

  1. Set default-src of the Content Security Policy

  2. try to buy something through checkout

  3. See the error on the console

    Content Security Policy: the page's settings blocked the loading of a resource at

Workaround

Remove the header

Contributors
1
Photo of the contributor
+ 1 contributors
Was this helpful?
Yes
No
Suggest Edits (GitHub)
Contributors
1
Photo of the contributor
+ 1 contributors
On this page
Still got questions?
Ask the community
Find solutions and share ideas in the VTEX Community
Join our community
Request VTEX support
For personalized assistance, contact our experts
Open a support ticket
GitHubDeveloper PortalCommunityFeedback