Reputation: 328
Refused to load the font ''data:font/woff;base64,...." in Ionic Framweork
I'm getting this error in the console:
Refused to load the font 'data:font/woff;base64,d09GRgABAAAAAGVUABEAAAAAxuQAAQABAAAAAAAAAAAAAAAAAAAAA…eLo4GBkcWhIzkkAqQkEggceHw5HFkM2VRZJFlYebR2MP5v3cDSu5GJwWUDW9xG1hQXAFAmKZU=' because it violates the following Content Security Policy directive: "font-src *".
My Content-Security-Policy meta tag looks like this:
<meta http-equiv="Content-Security-Policy" content="default-src *; style-src 'self' 'unsafe-inline'; font-src *; script-src * 'unsafe-inline' 'unsafe-eval'; child-src *">
What would be the issue?
Upvotes: 3
Views: 1064
Answers (1)
Reputation: 2124
Star isn't quite the wildcard you'd think it is in Content Security Policy. You have to manually specify certain directives including data: and blob:. Star will match any domain but not any protocol.
Adding data: to font-src list will let the font load. (Additionally I would remove the asterisk to trust as few things as possible).
Upvotes: 0
Related Questions
- Refused to load the font 'data:font/woff.....'it violates the following Content Security Policy directive: "default-src 'self'". Note that 'font-src'
- Refused to load the font '<URL>' because it violates the following Content Security Policy directive default-src ,so default-src is used as a fallback
- Brave: On <!DOCTYPE html>, Refused to load the font 'data:application/font-woff…' because it violates the following Content Security Policy directive…
- fonts/ionicons.ttf?v=2.0.0 404 (Not Found) - CSS- Angular - localhost
- custom Font is not loading in ionic framework
- Failed to load resource: net::ERR_CLEARTEXT_NOT_PERMITTED in Ionic 4
- Custom font issue in Ionic
- Refused to load the font '<URL>' because it violates the following Content Security Policy directive: "font-src *"
- Ionic - Custom font doesn't load
- custom fonts are not seeing after the build in Ionic2