Page Cannot be Displayed Error on loading a section: Security Issue
We have a html section for attaching files which is based off iFrame. On loading this section from flowaction, we are getting page cannot be displayed error. Same section is working when we load from harness.
And this issue is coming only in https (443) node of application, and same is working fine in http (8080)
In chrome console, we are able to see below error,
Can you please share your alert log, If you are getting "Secu00009" Pega alert code or the similar error message below, You have to add the below local change.
A browser has reported a violation of your application's Content Security Policy : A browser has reported a violation of your application's Content Security Policy. <CR>If you would like to correct this, modify your application's Content Security Policy to allow the Blocked Content Source to your Violated Directive<CR>
Add the website list to be bypassed in the "Allowed form actions" of "Form Actions" directive in "pxDefaultAllowAll" or custom content security policy.
I don't see any errors in alert logs. Could see below logging in local host access logs,
GET /prweb/PRServlet/jRaiVJ0d9Vv4EHRfoP_iCg%5B%5B*/!TABTHREAD1?pyActivity=GenerateActionFrame&HarnessMode=ACTION&TaskIndex=&FormError=&FieldError=&pyCustomError=&bExcludeLegacyJS=&NewAction=true&UniqueStamp=1563774653923&pzPrimaryPageName=pyWorkPage HTTP/1.1" 200 10494
To add, our application is built on Pega 6.1 SP2. So, in 6.x do we have CSP concept.