You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Content Security Policy (CSP) requires that all script tags be marked with a nonce attribute. Libraries such as django-csp lets us insert this in templates. Django-tempus-dominus inserts a script tag without a nonce, blocking the resource from being used by the browser.
Clunky workaround:
Write script tags as necessary including the nonce:
<script type="text/javascript" nonce="{{request.csp_nonce}}">
new tempusDominus.TempusDominus(
document.getElementById("id_datetime")
);
</script>
The text was updated successfully, but these errors were encountered:
Content Security Policy (CSP) requires that all script tags be marked with a nonce attribute. Libraries such as django-csp lets us insert this in templates. Django-tempus-dominus inserts a script tag without a nonce, blocking the resource from being used by the browser.
Clunky workaround:
Write script tags as necessary including the nonce:
The text was updated successfully, but these errors were encountered: