[openstreetmap/openstreetmap-website] OAuth2 form-action CSP error (Issue #3424)

Robbendebiene notifications at github.com
Mon Jan 17 10:08:36 UTC 2022 

It seems like the problem does still persist.

Meanwhile I was able to get the network log from Android:

![grafik](https://user-images.githubusercontent.com/13716661/149747725-460be9f8-57b9-47d9-af3e-2edd793088f7.png)

The CSP of the login request is:

content-security-policy: default-src 'self'; child-src 'self'; connect-src 'self'; font-src 'none'; form-action 'self'; frame-ancestors 'self'; frame-src 'self'; img-src 'self' data: www.gravatar.com *.wp.com tile.openstreetmap.org *.tile.openstreetmap.org *.tile.thunderforest.com tileserver.memomaps.de *.openstreetmap.fr; manifest-src 'self'; media-src 'none'; object-src 'self'; script-src 'self'; style-src 'self'; worker-src 'none'

I'm not sure about further information that could be useful to you.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/3424#issuecomment-1014347277
You are receiving this because you are subscribed to this thread.

Message ID: <openstreetmap/openstreetmap-website/issues/3424/1014347277 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20220117/00bdb1e0/attachment.htm>

More information about the rails-dev mailing list