What is the name of the domain?
What is the error number?
No specific error number, just CSP violations in the browser console.
What is the error message?
Firefox console shows multiple CSP errors like:Content-Security-Policy: The page’s settings blocked an inline script (script-src-elem) from being executed because it violates the directive “default-src https: ‘unsafe-inline’ ‘nonce-…’” and several inline style and script blocking messages.
What is the issue you’re encountering
The Cloudflare Zero Trust login page appears broken and visually distorted when accessed from Firefox. Styles and layout are missing. The browser console shows CSP violations related to blocked inline scripts and styles. This problem only occurs in Firefox (normal browsing mode). In Chrome or Firefox private mode, the login page renders correctly.
What steps have you taken to resolve the issue?
• Cleared cache and cookies.
• Disabled all extensions.
• Tested on multiple devices and clean Firefox installations.
• Tried adjusting Cloudflare Zero Trust policies, but the problem persists.
What are the steps to reproduce the issue?
- Open Firefox in standard browsing mode.
2. Navigate to a Cloudflare Zero Trust protected resource that triggers the login page.
3. Observe that the login page layout is broken, and check the browser console for CSP violations.
