I’m trying to develop an app that allows the user to sign into Microsoft Azure and displays their Azure portal information on the Nextcloud site, such as what subscriptions and virtual machines they have. However, whenever my JavaScript executes the code that is supposed to redirect the user to the Microsoft login, I get the following error:
Content-Security-Policy: The page’s settings blocked the loading of a resource at Sign in to your account (“form-action”).
I’ve tried several fixes that I found in these forums and on other websites, such as adding the following to the config.php file:
'overwrite.cli.url' => 'https://login.microsoftonline.com'
and adding the following meta tag to the app template:
<meta http-equiv="Content-Security-Policy" content="default-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.microsoftonline.com https://microsoftonline.com;child-src 'self' 'unsafe- inline' 'unsafe-eval' https://*.microsoftonline.com https://microsoftonline.com; object-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.microsoftonline.com https://microsoftonline.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.microsoftonline.com https://microsoftonline.com; img-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.microsoftonline.com https://microsoftonline.com;">
but neither solution has worked for me. Is there any way to get around this issue?