Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src

Posted on by Viet Luu

efused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

(index):40 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

(index):49 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

(index):84 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAP///wAAACH5BAEAAAAALAAAAAABAAEAAAICRAEAOw==’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

(index):204 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

(index):209 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

(index):237 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:1949 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.
_d7 @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:1949(anonymous function) @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:1955_cbs.push.rv @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:482_cbk @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:456_fin @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:441resolve @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:467(anonymous function) @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:530i$._initPage @ ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:245
ra:collection?themeID=ZJ_00000000000000A0BR2B300QC6&locale=en&mime-type=text%2Fjavascript&lm=146715…:1477 Refused to load the image ‘data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7’ because it violates the following Content Security Policy directive: “img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ https://www.google-analytics.com http://www.google-analytics.com https://stats.g.doubleclick.net”.

Resolved:

Start WebSphere Portal Server version 8.5, all the portal artifacts store in JCR.  In the content security policy header you need to include ‘data:’ in img-src.

i.e img-src ‘self’ ‘unsafe-inline’ ‘unsafe-eval’ data: https://www.google-analytics.com

 

  •  
  •  
  •  
  •  

  0 people found this article useful

Viet Luu has written 318 articles

If you like what you are reading, please consider buying us a coffee ( or 2 ) as a token of appreciation.

Buy Me A Coffee

We are thankful for your never ending support.

Leave a Reply