Allow all Frames in Marketing > Frames

  • Resolved mikewpdev

    (@mikewpdev)


    2 years, 9 months ago

    Hi,

    I would like to allow all frames in Marketing > Frames, once someone allows marketing cookies by clicking Accept,

    I did try wildcard,

    https://*.*/ but it gives me error:

    The source list for the Content Security Policy directive ‘frame-src’ contains an invalid source: ‘<URL>’. It will be ignored

    https://*.com/ works, but sometimes video sharing URLs are on different shortened domain names with crazy names, so it is unpredictable.

    Any idea on how to allow all frames once Marketing cookies are allowed?

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Johan Jonk Stenstr?m

    (@jonkastonka)

    You should define domains, not allow anything to be embedded. https://wiki.mozilla.org/Security/CSP/Specification#Hostname_Wildcards

    Maybe https://* could work, but I wouldn’t recommend it, since it would make your site break EU Cookie law, GDPR and CCPA.

    Thread Starter mikewpdev

    (@mikewpdev)

    Thank you Johan, https://* seems to be working.

    I used it on a website that allows it’s users to embed and share documents, videos, …, same as social networks do. Specific source is never known beforehand.

    I hope it is not breaking any law, as long as user will be informed that allowing marketing cookies will enable all/any third party cookies, to make the sharing feature available.

    Users have the choice to reject, on the other hand not being able to allow all sources would break functionality of the website.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Allow all Frames in Marketing > Frames’ is closed to new replies.