Custom plugin Content Security Policy problem

iamazy · April 23, 2019, 1:41pm

hello
i wrote a sql plugin for es7，and after installed it，query dataset by sql in kibana，i found kibana cause a Content Security Policy problem, the complete message as followed

Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'nonce-jHPATaeGD121pcYk'". Either the 'unsafe-inline' keyword, a hash ('sha256-SHHSeLc0bp6xt4BoVVyUy+3IbVqp3ujLaR+s+kSP5UI='), or a nonce ('nonce-...') is required to enable inline execution.

A single error about an inline script not firing due to content security policy is expected!

and then kibana got a message

{
  "statusCode": 504,
  "error": "Gateway Time-out",
  "message": "Client request timeout"
}

How to solve this problem?

thanks

trex · April 24, 2019, 2:44pm

I see the same error in the browser console. Everything works though.

iamazy · April 25, 2019, 1:34am

Hello ，
My problem was solved，may be it caused by serialization，I changed anothor
way and it works。
But I dont konw Why is that you got the same error but everything works

bye

system · May 23, 2019, 1:34am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Kibana URL Page : Refused to execute inline script because it violates the following Content Security Policy directive Kibana	1	73	July 22, 2024
Custom Plugin Error Kibana	0	87	September 15, 2024
Kibana Dev Tools Console Broken v7.11 Kibana	2	311	March 29, 2021
Kibana did not load properly. Check the server output for more information - Kibana not working Kibana	18	31394	September 3, 2019
Content Security Policy: error Kibana	2	439	February 6, 2020

Custom plugin Content Security Policy problem

Related topics