Content Security Policy

Lukas_Zelinka · July 5, 2024, 2:32pm

Hello, I’m encountering a Content Security Policy (CSP) error on my Webflow site when using Vimeo’s player API.

The browser console shows: “[Report Only] Refused to load the script ‘https://f.vimeocdn.com/p/4.34.4/js/player.module.js’ because it violates the following Content Security Policy directive: ‘script-src ‘none’’.”

In the footer code of my Webflow project, I added my custom JavaScript.

The CSP is blocking my script.

How can I adjust the Content Security Policy in Webflow to load my scripts ?

Can you help me, please ?

webdev · July 5, 2024, 2:37pm

Content Security Policy (CSP) - HTTP | MDN (mozilla.org)

TLDR: Requires a change to the server hosting the script. Check your implementation with the docs at Vimeo. Reach their support if needed.

Topic		Replies	Views
How to fix this Content Security Policy Custom code	1	881	July 26, 2023
Vimeo embed code dosen't work Community resources	0	235	January 22, 2024
How to connect to vimeo api for embedded videos Custom code	4	5535	August 1, 2024
Vimeo embed privacy issue Custom code	2	1842	February 22, 2022
Vimeo embed OK on laptop and android, does not work on iOS Webflow integrations	0	750	May 25, 2022

Content Security Policy

Related topics