I am creating a kibana plugin that embeds an instagram post and receiving this error:
C:\Users\User\Documents\Projects\kibana\plugins\kbn_tp_custom_visualizations\node_modules\react-instagram-embed\lib\index.js:135 Refused to load the script 'http://platform.instagram.com/en_US/embeds.js' because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'nonce-CqL6nSDD5P//hIcm'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.
I am aware that i need to add a csp rule to the kibana.yml file, i have tried the following:
- "script-src 'unsafe-eval' http://platform.instagram.com/en_US/embeds.js"
- "script-src 'self' http://platform.instagram.com/en_US/embeds.js"
- "script-src http://platform.instagram.com/en_US/embeds.js"