The only solution I could find is [BUG] Login Button doesn't work after installation · Issue #3617 · FreshRSS/FreshRSS · GitHub
You can either switch off those Cloudflare options, or reduce the the security by removing CSP rules at your Web server level.
- The first one is probably not an option since Rocket Loader helps to speed thing up?
So, that leaves me with “removing CSP rules”? And I found this on Cloudfare:-
CSP compatibility with Cloudflare Rocket Loader:
script-src ‘self’ ajax.cloudflare.com;
? Where do I put/change this line of code?
PS: It will be nice if I can just switch off FreshRSS which is hosted on a subdomain like xxx.abc.com… Is there a way to switch off Rocket Loader for subdomain?