Browser Link Support for Content Security Policy (CSP) HTTP Headers
If the user is using CSP then browser link is disabled as inline scripts cannot be run. Please use external files, which will allow us to use CSP in conjunction with Browser Link.
This is the error that Chrome throws:
Refused to load the script 'http://localhost:40323/7ccba4ec32eb40b093fe065c6ca53fbf/browserLink'; because it violates the following Content Security Policy directive: "script-src 'self' ajax.googleapis.com ajax.aspnetcdn.com".
Thanks for the feedback. This is in the top of the Browser Link team’s backlog.
Visual Studio Web Team
Jon Glick commented
Would love to see this fixed!
Hi Team, Any solution to this problem ? I am also facing same issue in my application.
Refused to load the script 'https://localhost:44399/0937efbc9d984f0c81b5f26014a6cc37/browserLink'; because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' 'unsafe-eval'".
I still experience same error as at now.
I would appreciate any help.
I got the same error..
I am using nwebsec toolkit for CSP..
What should i do to remove this error? Or it will not affect any operation so can we keep it?