These are chat archives for cherrypy/cherrypy

29th
Nov 2018
S Sathish Babu
@sathishbabu96
Nov 29 2018 11:02
I am having a problem with Content-Securit-Policy
I am setting the Content-Security-Policy as script-src='self' and trying to load a script containg src as "https://code.jquery.com/jquery-3.1.1.js".
The expected behaviour is not to execute the script
The actual behaviour is that the script is being executed and I am not getting any "refused to load the content" error.
Sviatoslav Sydorenko
@webknjaz
Nov 29 2018 12:46
CherryPy is a back-end framework. Nothing to do with your browser-side problem.
S Sathish Babu
@sathishbabu96
Nov 29 2018 13:44
I got it working. Setting the Content-Security-Policy as "script-src 'self'" solved my problem.