Results 1 to 1 of 1

Thread: content security protocol and bootstrap

  1. #1
    Junior Member
    Join Date
    Sep 2017
    Posts
    1

    content security protocol and bootstrap

    Hi

    I have implemented CSP to block all inline scripts (to prevent e.d. XSS) but something in the jquery bootstrap which is linked to and needs gets blocked. Apparently, it is an onfocusin. I think it is used inline because CSP specifically blocks that.
    How can I solve this?


    thanks, Anjo

    the error message I am getting (unfortunately in dutch but I think it is understandable) is:
    Content Security Policy: De instellingen van de pagina blokkeerden het laden van een bron op self (‘script-src https://www.jiangbaocollege.com’). Source: onfocusin attribute on DIV element.
    Last edited by fsasfsas; 09-01-2017 at 05:57 AM. Reason: adding error message displayed in F12 console

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •