Font Content Security Policy directive with Forge Custom UI

MARINAHDAVILA · October 25, 2022, 9:59am

I am developing a plugin by Forge ( Custom UI)
I import the third library UI.
I see the error belows:

hasRelativeStackingContext.js:22 Refused to load the font 'data:font/ttf;base64,AA*************
because it violates the following Content Security Policy directive: "font-src 'self'".

I add the meta tag in a header in the file “index.html” but it still not working.

<meta http-equiv="Content-Security-Policy" content="font-src 'self' data:; img-src 'self' data:; default-src 'self'">

linklefebvre · October 26, 2022, 12:16pm

Hi @MARINAHDAVILA

You may want to take a look at this page: https://developer.atlassian.com/platform/forge/add-content-security-and-egress-controls/

You could try adding permissions content policy that way.

Kind regards

MARINAHDAVILA · October 27, 2022, 2:21am

Hi @linklefebvre
I checked but it only for css and script. It dont have permission for font.

YY1 · March 2, 2023, 12:24pm

Hi @MARINAHDAVILA how do you fix the font-src issue? I got the same issue today.