Uploaded image for project: 'OFBiz'
  1. OFBiz
  2. OFBIZ-12276 Improve Helveticus theme
  3. OFBIZ-12423

Font used with Helveticus theme generates CSP violations

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Cannot Reproduce
    • Trunk, Upcoming Branch
    • None
    • themes/helveticus

    Description

      The font used by the Helvetica theme generates multiple CSP violations according to the inspector in the Firefox browser. See below.

      Content Security Policy: The page’s settings observed the loading of a resource at inline (“default-src”). A CSP report is being sent. 3 EditTaxAuthority
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. 4 
      Content Security Policy: The page’s settings observed the loading of a resource at inline (“default-src”). A CSP report is being sent. EditTaxAuthority
      Cookie “auth_tkt” will be soon treated as cross-site cookie against “https://localhost:8443/helveticus/js/helveticus.js” because the scheme does not match. helveticus.js
      Cookie “auth_tkt” will be soon treated as cross-site cookie against “https://localhost:8443/accounting/control/EditTaxAuthority?taxAuthPartyId=AUT_BMF&taxAuthGeoId=AUT” because the scheme does not match. 2 EditTaxAuthority
      Cookie “auth_tkt” will be soon treated as cross-site cookie against “https://localhost:8443/helveticus/js/OfbizUtil.js” because the scheme does not match. OfbizUtil.js
      Cookie “auth_tkt” will be soon treated as cross-site cookie against “https://localhost:8443/images/favicon-96.png” because the scheme does not match. favicon-96.png
      Cookie “auth_tkt” will be soon treated as cross-site cookie against “https://localhost:8443/images/favicon-32.png” because the scheme does not match. favicon-32.png
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2 (“default-src”). A CSP report is being sent. resource:517:31
      Content Security Policy: The page’s settings observed the loading of a resource at https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2 (“default-src”). A CSP report is being sent. 

      Attachments

        Activity

          People

            jleroux Jacques Le Roux
            pierresmits Pierre Smits
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: