Dashboard networks error

LMaquaire · May 31, 2023, 11:08am

Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):
opensearch v 2.7.0
chrome 113.0.5672.127

Describe the issue:
hello,

i have few error during navigation:

Refused to execute inline script because it violates the following Content Security Policy directive: “script-src ‘unsafe-eval’ ‘self’”. Either the ‘unsafe-inline’ keyword, a hash (‘sha256-75XtnrpDA0UHDMcl7S8lvswryIOd0RqgacRh0AMOgdk=’), or a nonce (‘nonce-…’) is required to enable inline execution.
uncaught (in promise) TypeError: Cannot read properties of undefined (reading ‘split’)

have you some documentation about web server’s configuration to fix this issues.

thanks

Gsmitt · June 1, 2023, 12:00am

Hey @LMaquaire

While back I see something like this here. Note sure if this is the same type of issue.

github.com/elastic/kibana

[Reporting] Refused to execute inline script error in Kibana log when generating a report

opened 12:54PM - 27 Jan 20 UTC

closed 04:46PM - 28 Jan 20 UTC

marius-dr

bug Feature:Reporting duplicate (Deprecated) Team:Reporting Services

**Kibana version:** 7.6.0 **Elasticsearch version:** 7.6.0 **Browser versi…on:** Firefox **Original install method (e.g. download page, yum, from source, etc.):** BC2 **Describe the bug:** When generating a PNG/PDF report on a dashboard, the following error shows up in the Kibana logs: PNG: ``` log [12:47:45.097] [error][PNG][browser-driver][execute][headless-browser-console] [k5wg5y4h04t11d4cb7fl9e4s][reporting] Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution. ``` PDF: ``` log [12:54:17.732] [error][browser-driver][execute][headless-browser-console] [k5wgecud0dsi1d4cb74eypq9][printable_pdf][reporting] Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution. ``` **Steps to reproduce:** 1. Load sample data. 2. Generate a PNG report on a dashboard. There doesn't seem to be any problem caused to the display of the dashboard or the generation of the report. The same thing happens if you try to generate a report on a visualization so it doesn't seem to be tied to dashboards. Tested with the tar.gz package on Ubuntu 18.

Stated

“The reason you are having a problem is that it appears you have set a more restrictive Content-Security-Policy response header. Here is the default header for Kibana:”

LMaquaire · June 1, 2023, 8:07am

Hey @Gsmitt ,

in fact, i have this issue on every page.

Topic		Replies	Views
Opensearch-reporting-cli: Downloading report failed. TypeError: Cannot read properties of undefined (reading 'toString') OpenSearch Dashboards	9	110	April 22, 2024
CSV report from discover security problem Security	4	414	April 19, 2021
Not able to run using custom plugins Open Source Elasticsearch and Kibana	1	360	February 7, 2023
OpenSearch-dashboards not respond (timeout) OpenSearch	1	583	June 25, 2022
Error: Bad Request when search Open Source Elasticsearch and Kibana troubleshoot	1	2502	April 7, 2022

Dashboard networks error

Related Topics