we have requirement adding Content Security Policy response header, this i have added in custom Filter and below is the code snippet for the same.
res.addHeader(“Content-Security-Policy”,"script-src ‘self’ ");
I am able to see in response header but my localhost:8080/cms page is not loading saying below error.
Please find the attachment for the same, do i need to add any configuration in hippo to skip this single quotations…kindly let me know if you guys are aware of any fix for this issue.
thanks & regards
Refused to execute inline script because it violates the following Content Security Policy directive: “script-src ‘self’”