/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- Integration of SAP Customer Data Cloud (Gigya) into SAP Fiori Launchpad environments using a custom shell results in a Content Security Policy (CSP) violation in SAP BTP Cloud Foundry Work Zone.
- This error can be visible with integration between CDC and other products.
- The following error is observed in the browser console:
`Uncaught EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src * data: blob:"`.
Read more...
Environment
- SAP Customer Data Cloud
- SAP BTP Cloud Foundry
- SAP Fiori Launchpad
- WEB SDK
Product
SAP Customer Data Cloud all versions
Keywords
content security policy, CSP violation, unsafe-eval, eval error, SAP BTP work zone, SAP customer data cloud, Gigya integration, Fiori Launchpad, SDK update, strict CSP, eval removal, new SDK version, legacy consent, screen-set configuration, cdc, evaluation, non-eval, unsafe-eval, Web SDK allow-unsafe-eval Toggle, WEB SDK, allow unsafe eval toggle. , KBA , CEC-PRO-CON , Admin Console (Settings, Administration, Queries / Reports) , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/facebook.svg)
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)