Search Posts

Category: csp

use sha for CSP in chrome app for inline <script> tag (angular)

I meet a problem using angular in Chrome app because of CSP violation. I tried to add hash to inline tag, but app dont recognise CSP manifest key There were warnings when trying to install this extension: *Unrecognized manifest key ‘Content-Security-Policy’. The part of the code, which making a problem is <script>System.import(‘main.js’).catch(function(err){ console.error(err); });</script> Manifest.js { “name”: “test-app”, “version”: “0.1”, “description”: “Test.”, “manifest_version”: 2, “minimum_chrome_version”: “40.0.2213.0”, “app”: { “background”: { “scripts”: [“background.js”] } }, “permissions”: […]