I embed quicksight to my app. And suddenly it stops working with this error in console. Framing ‘``https://us-east-2.quicksight.aws.amazon.com/’`` violates the following Content Security Policy directive: “child-src gap:”. The request has been blocked. Note that ‘frame-src’ was not explicitly set, so ‘child-src’ is used as a fallback.
I have implemented csp on frontend part of app and in csp i have this frame-src 'self' https://*.quicksight.aws.amazon.com; ``https://cookielaw.org`` https://*.cookielaw.org
I try add child-src gap:; but it doesnt help what else should i do?
Based on the error message you’re encountering, this appears to be a Content Security Policy (CSP) conflict on your application’s side. The key indicator is in the message itself, it states that frame-src was not explicitly set, so child-src is being used as a fallback.
To help resolve this, I’d recommend reviewing the following resources:
I would recommend filing a case with AWS Support where we can dive into the details so that we can help you further. Here are the steps to open a support case. If your company has someone who manages your AWS account, you might not have direct access to AWS Support and will need to raise an internal ticket to your IT team or whomever manages your AWS account. They should be able to open an AWS Support case on your behalf.