几天前,想试用一下Jira,结果卡在站点注册流程
Something went wrong on our end. Please try again. If this keeps happening, contact support. Issue ID for Atlassian use: ............
chrome dev-tools 显示如下错误信息
enterprise.js?render=6Le9VxMnAAAAALKRlj8jmKwUYmFTZWcF0y4o9QeD:1 Refused to load the script 'https://www.gstatic.cn/recaptcha/releases/3jpV4E_UA9gZWYy11LtggjoU/recaptcha__zh_cn.js' because it violates the following Content Security Policy directive: "script-src 'self' *.gstatic.com *.cookielaw.org *.public.atl-paas.net *.prod.atl-paas.net *.googletagmanager.com *.marketo.net *.atlassian.com utt.impactcdn.com *.google.com *.doubleclick.com *.googleadservices.com *.livechatinc.com *.bing.com *.quora.com *.yimg.jp *.clicktale.net *.linkedin.com *.twitter.com *.licdn.com *.demandbase.com *.doubleclick.net *.facebook.net *.redditstatic.com *.clearbitscripts.com *.clarity.ms *.vimeo.com *.google-analytics.com facebook.com *.facebook.com impactcdn.com *.impactcdn.com clearbitjs.com *.clearbitjs.com yahoo.co.jp *.yahoo.co.jp *.recaptcha.net *.ads-twitter.com *.intercom.io *.intercomcdn.com *.jsdelivr.net 'unsafe-eval' 'unsafe-inline'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.
各种研究折腾:
1、## GooReplacer 插件,无效,这个方案太过久远,或许曾经管用,但现在无法解决reCaptcha问题;
2、## 灵魂出窍,跨越国度,无效
最后使了狠招,直接禁用CSP(Content-Security-Policy),结果行了!
123上链接:Chrome # Disable Content-Security-Policy
注意!!!启用该插件会大幅度降低你系统的安全性,用完解决问题后一定要禁用甚至卸载!!!
参考:Azure Zeng《reCaptcha人机验证无法显示和CSP问题解决方案》(blog.azurezeng.com/recaptcha-u…)
