Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

matomo js blocked in google chrome #14720

Closed
siddvish12 opened this issue Aug 1, 2019 · 1 comment
Closed

matomo js blocked in google chrome #14720

siddvish12 opened this issue Aug 1, 2019 · 1 comment
Labels
answered For when a question was asked and we referred to forum or answered it.

Comments

@siddvish12
Copy link

Hi Team,

  1. Operating System : Window 7--64 bits
  2. XAMPP for Windows 7.3.7(PHP 7.3.7)
  3. Matomo Version 3.10.0

Downloaded Matomo on 17-July-2019.(upgrade to 3.11.0 [how to verify DB has been upgraded ]on 1-Aug-2019,but still issue persist in chrome)

Placed the Matomo folder in htdocs folder of XAMPP server
Using xampp-control application made Appache and Mysql up
with url http://localhost/matomo install matomo and configured database.

My application(Technology used: Struts 2,jsp,spring 3,jquery),Server: Wildfly 10,supports Chrome (my chrome v75), IE 11

IE11 doesn't stop loading matomo.js,but chrome refuses to load

As directed I tried to follow the instructions given in FAQ: https://matomo.org/faq/general/faq_20904/

As said moved the tracking code to tracking.js file <script type="text/javascript" src="js/tracking.js"></script>
and matomo.js <script src="http://localhost/matomo/matomo.js" async defer></script>,
both the script tag placed inbetween tag

on the load of application in chrome(Version 75)
gives error

Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' http://localhost/matomo/matomo.js". Either the 'unsafe-inline' keyword, a hash ('sha256-P47U9SvEMh8b3csLjO/YQ+vBliC1ROVLgzJzLGztmLA='), or a nonce ('nonce-...') is required to enable inline execution.

on adding attribute 'unsafe-inline' gives error

Refused to load the script 'http://localhost/matomo/matomo.js' because it violates the following Content Security Policy directive: "script-src 'unsafe-inline' 'unsafe-eval' 'self'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

Thankyou Team for the spontaneous reply.

Hope to soon find solution.

Sunitha
@tsteur
Copy link
Member

tsteur commented Aug 1, 2019

Hi there, maybe check out #14653 and related issues https://github.com/matomo-org/matomo/issues?utf8=%E2%9C%93&q=is%3Aissue+content+security+ . Maybe you find something there. It seems like other users are using it successfully. If there's still an issue please comment and we can reopen the issue. Be good if you could find out exactly what the problem is, so we can have a look.

@tsteur tsteur closed this as completed Aug 1, 2019
@tsteur tsteur added the answered For when a question was asked and we referred to forum or answered it. label Aug 1, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
answered For when a question was asked and we referred to forum or answered it.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tsteur @siddvish12