Content Security Policy - loading WOFF fonts

In regards to the fonts, my CSP is set as follows:

font-src 'self';

When I load the page I get the following error:

    Refused to load the font 'data:application/font-woff;charset=utf-8;base64, 
    because it violates the following Content Security Policy directive: "font-src 'self'".

I checked the forums and found this page but it doesn’t provide any information beyond what I’m already doing so what am I missing?


Try with

font-src 'self' data:;

That was perfect! Thanks!
(only 3 more issues to resolve before moving forward with the port!)

1 Like