[openstreetmap/openstreetmap-website] Content Security Policy prevents sharing (Issue #6214)
ckdexterhaven
notifications at github.com
Sun Jul 20 17:14:45 UTC 2025
ckdexterhaven created an issue (openstreetmap/openstreetmap-website#6214)
### URL
_No response_
### How to reproduce the issue?
On a PC (not a MAC), using any current browser, select a map area.
Select Share, and any of the format options (I was looking for an SVG file)
Click Download.
You'll immediately get an error - displayed in developer tools: **/#map=16/34.57934/-119.96656&layers=T:1 Refused to send form data to 'https://www.openstreetmap.org/export/finish' because it violates the following Content Security Policy directive: "form-action 'self' render.openstreetmap.org".**
As this is a complete show-stopped I'm at odds why this hasn't been reported. All of my collogues, in several offices experience the same.
THX!
### Screenshot(s) or anything else?
_No response_
--
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/6214
You are receiving this because you are subscribed to this thread.
Message ID: <openstreetmap/openstreetmap-website/issues/6214 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20250720/c511639c/attachment.htm>
More information about the rails-dev
mailing list