angular-ui/ui-grid

Content Security Policy - inline styles

Open

#6,031 opened on 2017年2月21日

GitHub で見る
 (2 comments) (1 reaction) (0 assignees)JavaScript (2,496 forks)batch import
help wanted

Repository metrics

Stars
 (5,395 stars)
PR merge metrics
 (30d に merged PR はありません)

説明

Hello, I am developing an Angular application with uiGrid

My webserver sets strict CSP headers - I do not want to allow inline css: script-src 'self'

I have followed Angular CSP guidelines etc, all is working well but I am getting few errors in console and it seems uiGrid uses inline styles. I have not found any recomendations ion this in tutorials. Is there any way how to run uiGrid with strict styles csp?

Can this be at least added to "requirements" sections in tutorials to let other users now about this?

uiGrid works fine if I set script- src to style-src 'self' 'unsafe-inline'

Thanks your your reply!

コントリビューターガイド