-
Improvement
-
Resolution: Fixed
-
Minor
-
3.9.5
-
-
MOODLE_39_STABLE
-
MOODLE_400_STABLE
-
Moodle App 4.0
We have the following setting in config.xml:
<access origin="*" />
It seems this setting overrides the CSP because the app allows loading styles and scripts from any source. However, in the webapp the CSP is applied and it blocks some requests (e.g. MathJax in H5P). We should make the CSP less strict to match the behaviour in native devices..