Zaraz with a CSP nonce

mtheuer · January 21, 2022, 11:14pm

The Zaraz script which is automatically injected into my webpages is blocked by my Content Security Policy: "script-src ‘nonce-’ ‘strict-dynamic’ "

I have included my ‘nonce-’ in the code for my “Custom HTML” tools. But Zaraz is still blocked.

It seems I have to add a nonce to the automatic Zaraz script. But how?

Thanks.

yoav_zaraz · January 28, 2022, 1:50pm

You should be able to disable Auto-injecting Zaraz and then manually inserting the script to your page. You can then add a nonce attribute to your tag.

https://developers.cloudflare.com/zaraz/get-started/options

mtheuer · January 28, 2022, 2:42pm

Thanks, yoav_zaraz.

system · January 31, 2022, 2:42pm

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
CSP nonce in Zaraz Zaraz Integration Request	6	2060	November 6, 2023
Zaraz blocked by uBlock Origin Zaraz	4	3380	January 27, 2024
I have a problem about zaras Zaraz	1	790	October 4, 2023
Zaraz AMP issue Zaraz	2	1842	July 24, 2023
Zaraz script not injecting Zaraz	3	1220	October 23, 2023

Zaraz with a CSP nonce

Related topics