问题
Does anyone know if there's a way around this security policy for Facebook Instant Games? I'm trying to load a video using a local blob that I'm downloading using Fetch().
Content Security Policy: The page’s settings blocked the loading of a resource at blob:https://XYZ (“default-src https://XYZ”)
Using the video's direct URL as the video.src isn't an option for me. Any thoughts?
回答1:
I work on the Instant Games team. The preferred approach is to store any assets for your Instant Game in the Instant Game bundle itself.
Having said this we've reviewed this and we think it will open up more flexibility on the platform if we open up the blob protocol in media-src, so this should now work.
来源:https://stackoverflow.com/questions/49122173/instant-games-content-security-policy