Answers for "Content Security Policy: "img-src 'self' data:""

Content Security Policy: "img-src 'self' data:"

Take note that if you have the CSP configured in your application's web.config file the index CSP
setting will be overriden by the above web.config setting so, you need to cross check and make 
the setting according in the web.config for the image to be converted.

Index meta tag:
===============
<meta http-equiv="Content-Security-Policy" content="default-src *;
   img-src * 'self' data: https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *;
   style-src  'self' 'unsafe-inline' *">
   
Web config setting:
==================
<add name="Content-Security-Policy" value="default-src https: http: 'unsafe-inline'; img-src * 'self' data: https:;" />

Posted by: Guest on September-02-2021

Source