Auth0 Home Blog Docs

/callback giving CSP error


#1

This just started last night, I keep getting when redirecting to the callback url.

Refused to execute inline script because it violates the following Content Security Policy directive: “default-src ‘self’”. Either the ‘unsafe-inline’ keyword, a hash (‘sha256-7+J4BBpfP6BrGwq4jUTZH0MyBpT74yWhCBZ2TproeZY=’), or a nonce (‘nonce-…’) is required to enable inline execution. Note also that ‘script-src’ was not explicitly set, so ‘default-src’ is used as a fallback.

22Refused to load the font ‘’ because it violates the following Content Security Policy directive: “default-src ‘self’”. Note that ‘font-src’ was not explicitly set, so ‘default-src’ is used as a fallback.