Announcements

Help Wizard

Step 1

NEXT STEP

FAQs

Please see below the most popular frequently asked questions.

Loading article...

Loading faqs...

VIEW ALL

Ongoing Issues

Please see below the current ongoing issues which are under investigation.

Loading issue...

Loading ongoing issues...

VIEW ALL

Iframe api unsafe-eval

Iframe api unsafe-eval

Plan

Free/Premium

Country

Denmark

Device

Websites on chrome

My Question or Issue

When using the iframeapi it will not work unless you allow unsafe-eval in your CSP which is a no-go for most websites.

from the console:

 

 

 

Uncaught EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self' 'unsafe-inline' open.spotify.com embed-cdn.spotifycdn.com *.g.doubleclick.net".




 

 

 

 

 

 

Reply
0 Replies

Suggested posts

Staff
Let's introduce ourselves!

Hey there you,   Yeah, you! 😁   Welcome - we're glad you joined the Spotify Community!   While you here, let's have a fun game and get…

Staff
ModeratorStaff / Moderator/ 3 years ago  in Social & Random

Type a product name