CSP error when uploading attachments to notes

z77 · Post by **z77** » 08 Apr 2024, 05:26

Whenever I upload an attachment to an issue/note, the next page does not render any css files, and gives multiple Content Security Policy warnings in dev console. Any ideas what this could be? This is a new install. Thanks for any help

Code: Select all

Refused to load the stylesheet '<URL>' because it violates the following Content Security Policy directive: "style-src 'self' 'unsafe-inline'". Note that 'style-src-elem' was not explicitly set, so 'style-src' is used as a fallback.

VM44 common.js:804 Refused to load the stylesheet 'http://mymantisinstall.com/mantis/css/default.css?cache_key=4d327ba461ddf0a0bee6671db2457db6' because it violates the following Content Security Policy directive: "style-src 'self' 'unsafe-inline'". Note that 'style-src-elem' was not explicitly set, so 'style-src' is used as a fallback.

(anonymous) @ VM44 common.js:804
value @ VM46 dropzone-5.5.0.min.js:1
value @ VM46 dropzone-5.5.0.min.js:2
value @ VM46 dropzone-5.5.0.min.js:2
e.onload @ VM46 dropzone-5.5.0.min.js:1
load (async)
value @ VM46 dropzone-5.5.0.min.js:1
(anonymous) @ VM46 dropzone-5.5.0.min.js:1
(anonymous) @ VM46 dropzone-5.5.0.min.js:2
transformFile @ VM46 dropzone-5.5.0.min.js:1
(anonymous) @ VM46 dropzone-5.5.0.min.js:1
value @ VM46 dropzone-5.5.0.min.js:2
value @ VM46 dropzone-5.5.0.min.js:1
value @ VM46 dropzone-5.5.0.min.js:1
value @ VM46 dropzone-5.5.0.min.js:1
(anonymous) @ VM44 common.js:799
dispatch @ VM43 jquery-2.2.4.min.js:3
r.handle @ VM43 jquery-2.2.4.min.js:3
VM44 common.js:804 Refused to load the stylesheet 'http://mymantisinstall.com/mantis/css/dropzone-5.5.0.min.css' because it violates the following Content Security Policy directive: "style-src 'self' 'unsafe-inline'". Note that 'style-src-elem' was not explicitly set, so 'style-src' is used as a fallback.