I've been getting an error when trying to use EasyBlog's code block facility giving error: Uncaught EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "default-src 'self'".
I've experimented with Admin Tools and if in the .htaccess Maker I switch off "Disable client-side risky behavior in frontend static content" then it works correctly. Of course I don't want to switch this off but rather just set an exception. I put the path it complains about in an exception as follows:
<If "%{REQUEST_URI} == '/media/com_easyblog/scripts/composer-6.0.10.min.js'">
<IfModule mod_headers.c>
Header always unset Content-Security-Policy
</IfModule>
</If>
But this has no effect. I appreciate EasyBlog isn't your component, but is there any guidance you can give to help with what I need to do?
Thanks.
