Skip to content

Django CSP nonce not included #187

New issue
New issue
Open
Bug
open-zaak/open-zaak
#2211
Open
Django CSP nonce not included#187
Bug
open-zaak/open-zaak
#2211
Assignees
TimdeBeer1
Labels
blockedIssue is blocked. There should be a comment that explains why.bugSomething isn't workingowner: maykin
@TimdeBeer1

Description

@TimdeBeer1
TimdeBeer1
opened on Sep 26, 2025

Product versie / Product version

0.13.0

Omschrijf het probleem / Describe the bug

While overriding the openlayers.html template in Open Zaak to add the nonce to the script - https://django-csp.readthedocs.io/en/latest/nonce.html

The CSP nonce is not included in the CSP script-src header, even though it is configured in OAF’s base settings.

Info - open-zaak/open-zaak#2175 (comment)

Stappen om te reproduceren / Steps to reproduce

No response

Verwacht gedrag / Expected behavior

No response

Metadata

Metadata

Assignees

Labels

blockedIssue is blocked. There should be a comment that explains why.bugSomething isn't workingowner: maykin

Type

Bug

Projects

Data en API fundament

Status

Implemented

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions