Posts Tagged ‘CSP’

HTML5 Content Security Policy & Chrome DevTools

Thursday, July 30th, 2015

Never had this issue with Eclipse ADT, but with Visual Studio “Tools for Apache Cordova”.
When clicking “inspect” at chrome://inspect/#devices, on an Android 5.1 device
and receiving the following error message due to a “Content Security Policy” restriction:

Cannot load DevTools frontend from an untrusted origin.

To relax the content security, one has to define devtools as a valid src:
<meta http-equiv="Content-Security-Policy" content="script-src 'self' chrome-devtools://devtools; object-src 'self' chrome-devtools://devtools"/>

External Links: