When I set the following: add_header Content-Security-Policy “default-src ‘self’; script-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’; style-src ‘self’ ‘unsafe-inline’; img-src ‘self’ data:; font-src ‘self’; frame-src ‘none’; object-src ‘none’; base-uri ‘self’; form-action ‘self’;”;
I can no longer log into my site. I suspect the script-src needs to add something from wordfence but I am not sure. Any pointers as to what i should add?