angular-ui/ui-grid

Content Security Policy - inline styles

Open

#6031 aperta il 21 feb 2017

Vedi su GitHub
 (2 commenti) (1 reazione) (0 assegnatari)JavaScript (2496 fork)batch import
help wanted

Metriche repository

Star
 (5395 star)
Metriche merge PR
 (Nessuna PR mergiata in 30 g)

Descrizione

Hello, I am developing an Angular application with uiGrid

My webserver sets strict CSP headers - I do not want to allow inline css: script-src 'self'

I have followed Angular CSP guidelines etc, all is working well but I am getting few errors in console and it seems uiGrid uses inline styles. I have not found any recomendations ion this in tutorials. Is there any way how to run uiGrid with strict styles csp?

Can this be at least added to "requirements" sections in tutorials to let other users now about this?

uiGrid works fine if I set script- src to style-src 'self' 'unsafe-inline'

Thanks your your reply!

Guida contributor