Problem with CSP

KHJA · July 26, 2023, 9:36am

We are currently implementing a like-wise CSP header and have the exact same issue on our server end when trying to implement the piwik pro script.

The script-src looks like this:

script-src-elem ‘self’ https://CLIENT.containers.piwik.pro https://CLIENT.piwik.pro/ppms.js ‘nonce-VALUE’;\

The error message in our browser log:

“Refused to execute inline script because it violates the following Content Security Policy directive: …”

We do not face issues when tracking on localhost.

Thank you in advance.

kuba · July 26, 2023, 9:38am

Hi. Did you follow this guide? Content Security Policy (CSP) — Piwik PRO Analytics Suite 17.6 documentation

KHJA · July 26, 2023, 9:59am

Thank you for your quick response @kuba

After checking the documentation and updating the script to the async snippet, we still face the same error when testing on our not-local environment.

sararekowska · July 26, 2023, 12:48pm

Hi!
Could you provide us with the URL of the instance you are referring to? You can leave it here under the thread or send it to me via private message.

Topic		Replies	Views
Piwik Pro Core and CSP 3 Data collection and tags	2	345	May 11, 2022
Content Security Policy (CSP) issue Data collection and tags	6	642	July 26, 2023
Refused to load the script Piwik Pro Data collection and tags	2	478	September 27, 2022
Piwik not tracking Data collection and tags	2	114	May 26, 2023
Error caused by tracking script when accessing local html Data collection and tags	9	1030	April 28, 2021

Problem with CSP

Related Topics