here's what has to work. now to figure out how to make it work

colinxfleming · colinxfleming · commit d20ddb0276ac · 2022-07-31T01:14:13.000-04:00
diff --git a/config/initializers/content_security_policy.rb b/config/initializers/content_security_policy.rb
@@ -28,9 +28,7 @@
 # Set the nonce only to specific directives
 Rails.application.config.content_security_policy_nonce_directives = %w(script-src)
 
-# # Report CSP violations to a specified URI
-# # For further information see the following documentation:
-# # https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only
-# Rails.application.config.content_security_policy_report_only = false
-# TEMPORARILY TRUE WHILE WE GET THE HANG OF JSBUNDLING
-Rails.application.config.content_security_policy_report_only = true
+# Report CSP violations to a specified URI
+# For further information see the following documentation:
+# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only
+Rails.application.config.content_security_policy_report_only = false
