![](/img/trans.png)
[英]Heroku "returnTo" querystring parameter error on logout using Auth0
[英]Content Security Policy issue when using auth0 with heroku
我試圖讓 auth0 與 heroku 一起工作,但遇到了一些困難。
我可以讓它毫無問題地在本地工作,但它不能與 Heroku 一起工作
我的設置:React 應用程序從 express 中作為靜態資源作為服務器
auth0 提供程序的代碼:
const providerConfig = {
domain: process.env.AUTH0_DOMAIN,
clientId: process.env.AUTH0_CLIENT_ID,
redirectUri: window.location.origin,
};
ReactDOM.render(
<Auth0Provider {...providerConfig}>
<BrowserRouter history={history}>
<App />
</BrowserRouter>
</Auth0Provider>,
document.getElementById("root")
);
我嘗試登錄時遇到的錯誤:
Refused to connect to 'https://small-dust-7659.eu.auth0.com/oauth/token' because it violates the following Content Security Policy directive: "default-src 'self'". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.
非常感謝任何幫助,謝謝!
問題與頭盔配置有關..
我將 auth0 域添加到 connectSrc 並解決了問題
helmet({
contentSecurityPolicy: {
directives: {
defaultSrc: ["'self'"],
objectSrc: ["'none'"],
scriptSrc: ["'self'", "unpkg.com", "polyfill.io"],
styleSrc: ["'self'", "https: 'unsafe-inline'"],
----> connectSrc: ["'self'", "xxxxxx.eu.auth0.com"],
upgradeInsecureRequests: [],
},
},
});
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.