40881 [qtp1287712235-16] WARN net.liftweb.http.LiftRules - Content security policy violation reported on page | 'http://demo.biochargerng.com/bc/login' from referrer 'http://demo.biochargerng.com/bc/login': | 'data' was blocked because it violated the | directive 'font-src'. The policy that specified | this directive is: 'default-src 'self'; connect-src *; font-src 'unsafe-eval' 'unsafe-inline' 'self'; img-src 'unsafe-inline' 'self'; script-src 'unsafe-eval' 'unsafe-inline' 'self'; style-src 'unsafe-inline' *; report-uri /bc/lift/content-security-policy-report'.42592 [qtp1287712235-18] WARN net.liftweb.http.LiftRules - Content security policy violation reported on page | 'http://demo.biochargerng.com/bc/login' from referrer 'http://demo.biochargerng.com/bc/login': | 'data' was blocked because it violated the | directive 'img-src'. The policy that specified | this directive is: 'default-src 'self'; connect-src *; font-src 'unsafe-eval' 'unsafe-inline' 'self'; img-src 'unsafe-inline' 'self'; script-src 'unsafe-eval' 'unsafe-inline' 'self'; style-src 'unsafe-inline' *; report-uri /bc/lift/content-security-policy-report'.
LiftRules.securityRules = () => { SecurityRules(content = Some(ContentSecurityPolicy( styleSources = List( ContentSourceRestriction.UnsafeInline, ContentSourceRestriction.All ), connectSources = List( ContentSourceRestriction.All ), scriptSources = List( ContentSourceRestriction.UnsafeEval, ContentSourceRestriction.UnsafeInline, ContentSourceRestriction.Self ), imageSources = List( ContentSourceRestriction.UnsafeInline, ContentSourceRestriction.Self ), fontSources = List( ContentSourceRestriction.UnsafeEval, ContentSourceRestriction.UnsafeInline, ContentSourceRestriction.Self ) )))}
LiftRules.extractInlineJavaScript = true
ContentSourceRestriction.Scheme("data")