I cant seem to get Zaraz to work with a

I cant seem to get Zaraz to work with a basic website hosted on Google Sites behind a CloudFlare proxied domain.

I am getting the following error in my browser console:

Refused to load the script 'https://MY_DOMAIN/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQWFyYW51aSUyMFNvbHV0aW9ucyUyMiUyQyUyMnglMjIlM0EwLjE2Nzk2NjEzMDk3NjExMTEzJTJDJTIydyUyMiUzQTczNSUyQyUyMmglMjIlM0E5NTYlMkMlMjJqJTIyJTNBOTQ5JTJDJTIyZSUyMiUzQTczNCUyQyUyMmwlMjIlM0ElMjJodHRwcyUzQSUyRiUyRnd3dy5hcmFudWkuc29sdXRpb25zJTJGJTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EzMCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EtNzgwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==' because it violates the following Content Security Policy directive: "script-src 'report-sample' 'nonce-354ZfNQ0DskSeBwhmaqMLw' 'unsafe-inline' 'unsafe-eval' 'nonce-aadf72f0-c758-4bfc-8ae8-6a283579b97d'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

Refused to load the script 'https://MY_DOMAIN/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQWFyYW51aSUyMFNvbHV0aW9ucyUyMiUyQyUyMnglMjIlM0EwLjE2Nzk2NjEzMDk3NjExMTEzJTJDJTIydyUyMiUzQTczNSUyQyUyMmglMjIlM0E5NTYlMkMlMjJqJTIyJTNBOTQ5JTJDJTIyZSUyMiUzQTczNCUyQyUyMmwlMjIlM0ElMjJodHRwcyUzQSUyRiUyRnd3dy5hcmFudWkuc29sdXRpb25zJTJGJTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EzMCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EtNzgwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==' because it violates the following Content Security Policy directive: "script-src 'report-sample' 'nonce-354ZfNQ0DskSeBwhmaqMLw' 'unsafe-inline' 'unsafe-eval' 'nonce-aadf72f0-c758-4bfc-8ae8-6a283579b97d'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

Here is the

Content-Security-Policy

Content-Security-Policy

header for the domain:

base-uri 'self'; object-src 'none'; report-uri /_/view/cspreport; script-src 'report-sample' 'nonce-0j9hWHckFcZ97YG1tpu_ww' 'unsafe-inline' 'unsafe-eval' 'nonce-ad89c5b2-078b-4aec-8d87-8cbbb5421842'; worker-src 'self'; frame-ancestors https://google-admin.corp.google.com/

base-uri 'self'; object-src 'none'; report-uri /_/view/cspreport; script-src 'report-sample' 'nonce-0j9hWHckFcZ97YG1tpu_ww' 'unsafe-inline' 'unsafe-eval' 'nonce-ad89c5b2-078b-4aec-8d87-8cbbb5421842'; worker-src 'self'; frame-ancestors https://google-admin.corp.google.com/

Cloudflare Developers•3y ago

Zapper™

I cant seem to get Zaraz to work with a

I cant seem to get Zaraz to work with a basic website hosted on Google Sites behind a CloudFlare proxied domain.

I am getting the following error in my browser console:

Refused to load the script 'https://MY_DOMAIN/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQWFyYW51aSUyMFNvbHV0aW9ucyUyMiUyQyUyMnglMjIlM0EwLjE2Nzk2NjEzMDk3NjExMTEzJTJDJTIydyUyMiUzQTczNSUyQyUyMmglMjIlM0E5NTYlMkMlMjJqJTIyJTNBOTQ5JTJDJTIyZSUyMiUzQTczNCUyQyUyMmwlMjIlM0ElMjJodHRwcyUzQSUyRiUyRnd3dy5hcmFudWkuc29sdXRpb25zJTJGJTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EzMCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EtNzgwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==' because it violates the following Content Security Policy directive: "script-src 'report-sample' 'nonce-354ZfNQ0DskSeBwhmaqMLw' 'unsafe-inline' 'unsafe-eval' 'nonce-aadf72f0-c758-4bfc-8ae8-6a283579b97d'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

Refused to load the script 'https://MY_DOMAIN/cdn-cgi/zaraz/s.js?z=JTdCJTIyZXhlY3V0ZWQlMjIlM0ElNUIlNUQlMkMlMjJ0JTIyJTNBJTIyQWFyYW51aSUyMFNvbHV0aW9ucyUyMiUyQyUyMnglMjIlM0EwLjE2Nzk2NjEzMDk3NjExMTEzJTJDJTIydyUyMiUzQTczNSUyQyUyMmglMjIlM0E5NTYlMkMlMjJqJTIyJTNBOTQ5JTJDJTIyZSUyMiUzQTczNCUyQyUyMmwlMjIlM0ElMjJodHRwcyUzQSUyRiUyRnd3dy5hcmFudWkuc29sdXRpb25zJTJGJTIyJTJDJTIyciUyMiUzQSUyMiUyMiUyQyUyMmslMjIlM0EzMCUyQyUyMm4lMjIlM0ElMjJVVEYtOCUyMiUyQyUyMm8lMjIlM0EtNzgwJTJDJTIycSUyMiUzQSU1QiU1RCU3RA==' because it violates the following Content Security Policy directive: "script-src 'report-sample' 'nonce-354ZfNQ0DskSeBwhmaqMLw' 'unsafe-inline' 'unsafe-eval' 'nonce-aadf72f0-c758-4bfc-8ae8-6a283579b97d'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

Here is the

Content-Security-Policy

Content-Security-Policy

header for the domain:

base-uri 'self'; object-src 'none'; report-uri /_/view/cspreport; script-src 'report-sample' 'nonce-0j9hWHckFcZ97YG1tpu_ww' 'unsafe-inline' 'unsafe-eval' 'nonce-ad89c5b2-078b-4aec-8d87-8cbbb5421842'; worker-src 'self'; frame-ancestors https://google-admin.corp.google.com/

base-uri 'self'; object-src 'none'; report-uri /_/view/cspreport; script-src 'report-sample' 'nonce-0j9hWHckFcZ97YG1tpu_ww' 'unsafe-inline' 'unsafe-eval' 'nonce-ad89c5b2-078b-4aec-8d87-8cbbb5421842'; worker-src 'self'; frame-ancestors https://google-admin.corp.google.com/

I cant seem to get Zaraz to work with a

Similar Threads

I cant seem to get Zaraz to work with a

Similar Threads

Similar Threads

Similar Threads