Tag

#csp

2 posts across the garden · browse essays

EssaysJun 26, 2023Evergreen

Allowing Google Tag Manager through the Content-Security-Policy

The inevitable follow-up to adding GTM: the browser's CSP was blocking the script, so this PR adds googletagmanager.com to script-src and img-src in next.config.js.

dev-log
code
programming
vercel-blog
+4

EssaysJun 26, 2023Evergreen

Fixing a CSP typo: directive names don't take colons

The one-character follow-up to PR #4: removing the stray colons from the CSP directive names so the browser stops ignoring the whole header.

dev-log
code
programming
vercel-blog
+3