angular-ui/ui-grid

Content Security Policy - inline styles

Open

#6 031 ouverte le 21 févr. 2017

Voir sur GitHub
 (2 commentaires) (1 réaction) (0 assignés)JavaScript (2 496 forks)batch import
help wanted

Métriques du dépôt

Stars
 (5 395 stars)
Métriques de merge PR
 (Aucune PR mergée en 30 j)

Description

Hello, I am developing an Angular application with uiGrid

My webserver sets strict CSP headers - I do not want to allow inline css: script-src 'self'

I have followed Angular CSP guidelines etc, all is working well but I am getting few errors in console and it seems uiGrid uses inline styles. I have not found any recomendations ion this in tutorials. Is there any way how to run uiGrid with strict styles csp?

Can this be at least added to "requirements" sections in tutorials to let other users now about this?

uiGrid works fine if I set script- src to style-src 'self' 'unsafe-inline'

Thanks your your reply!

Guide contributeur