This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src").

  • 1 reply
  • 1 has this problem
  • 1 view
  • Last reply by admin278

more options

I have a website running on a virtual machine on my PC. I access it through m-nlp.test.

Suddenly, my js files are not loaded anymore, although I have not changed anything at the website.

I get the following error/warnings when I open my website with Firefox:

>Loading failed for the with source “http://m-nlp.test/js/index.js?v=4”.

>Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src").

and the js is not working. I don't understand why a `Content Security Policy` is raised, because the js files that I try to load are accessed from the same domain (http://m-nlp.test/).

Weird facts:

  • The live website on the production server is working in Firefox.
  • m-nlp.test works in Chrome
  • m-nlp.test works in incognito window in Firefox.

I cleared cache for m-nlp.test but it is still showing the same error.

What could cause it?

I have a website running on a virtual machine on my PC. I access it through m-nlp.test. Suddenly, my js files are not loaded anymore, although I have not changed anything at the website. I get the following error/warnings when I open my website with Firefox: >Loading failed for the with source “http://m-nlp.test/js/index.js?v=4”. >Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src"). and the js is not working. I don't understand why a `Content Security Policy` is raised, because the js files that I try to load are accessed from the same domain (http://m-nlp.test/). Weird facts: * The live website on the production server is working in Firefox. * m-nlp.test works in Chrome * m-nlp.test works in incognito window in Firefox. I cleared cache for m-nlp.test but it is still showing the same error. What could cause it?
Attached screenshots

Chosen solution

Okay I fixed it, I had the "Disable JS" plugin activated. Whoups.

Read this answer in context 👍 0

All Replies (1)

more options

Chosen Solution

Okay I fixed it, I had the "Disable JS" plugin activated. Whoups.