Anybody else see content security policies preventing script loading on CDC Subscriber Management?
repro steps:
From the main menu, go to System Management > CDC Management > CDC Subscriber Management.
F12 to open devtools
In the Summary card, select the Collaborate subscriber.
In the Details > Rules card, select any rule choose edit from grid actions
See this in console?
Are you licensed for Collaborate?
we pay for it and its working so yeah. This appears to be a Content Security Policy issue on the webserver disallowing blob script loading.
Although the CSP is VERY permissive, ie includes:
script-src 'self' 'unsafe-eval' 'unsafe-inline'
it does not include:
blob: data:
I’m guessing if other’s CSP headers are the same, then the error is not specific to our env.