Content-Security-Policy issue | WordPress.org

Hi, when I use the content security policy header, the language switcher’s flag breaks down. Although I use “unsafe-inline” tag in most of the titles, I couldnt solve the issue. Also my own url is already added in “filesystems:” tag with wildcards (*.url.com/*)

This is how I use the header (I have seperated into lines to make it easier to view):

Header set Content-Security-Policy

default-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
script-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
style-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
img-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
connect-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
font-src ‘self’ https: filesystem: related-urls-here
media-src ‘self’ https: filesystem: related-urls-here
child-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
form-action ‘self’ https: filesystem: related-urls-here
frame-ancestors ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
frame-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
worker-src ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
manifest-src ‘self’ https: filesystem: related-urls-here
navigate-to ‘self’ ‘unsafe-inline’ https: filesystem: related-urls-here
base-uri ‘self’ https: filesystem: related-urls-here

Thanks.

 

This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer