Issue
I'm trying to use Google Fonts and I've never had any problems, but now when I try to add the CSS file on my header I get this error on the console:
Refused to load the stylesheet 'http://fonts.googleapis.com/css?family=Whatever'
because it violates the following Content Security Policy directive: "style-src 'self' 'unsafe-inline'"
.
Solution
There are two things to fix here:
- Use https for the Google fonts link (
https://fonts.googleapis.com/css?family=Whatever
) - Authorize
https://fonts.googleapis.com
instyle-src
directive andhttps://fonts.gstatic.com
infont-src
directive:"style-src 'self' https://fonts.googleapis.com; font-src 'self' https://fonts.gstatic.com"
Answered By - Rolinh