我添加了Content-Security-Policy,它在Chrome、Firefox和Opera中运行良好,但在Internet Explorer 11中出现错误“无法显示此页面”。
add_header Content-Security-Policy "connect-src 'self' wss://example.com/ws/;
script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google-analytics.com https://www.google.com https://www.gstatic.com/recaptcha/api2/recaptcha__en.js https://ajax.cloudflare.com/cdn-cgi/nexp/cloudflare.min.js;
frame-src 'self' https://www.terminal.com/embed/chart-widget/ https://www.google.com/recaptcha/;
img-src 'self' https://www.google-analytics.com https://chart.googleapis.com https://shape.com;
";
如果我注释掉这一部分代码,它可以在IE上正常工作。
为什么我只在IE上遇到这个错误?谢谢。