REST API scripts blocked by security in Safari?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
We implmented the REST API version of PayPal on our website about 3 weeks ago.
Most customers seem to be able to use it but now it seems that people using recently updated Mac's are not able to use it. The pop up box appears and ht ecircle spins but something blocks the form from appearing.
When we first installed this version we did find a confilct with the Security Content Headers that we are required to have in order to be PCI compliant. We seemed to resolve this by adding
script-src https://www.paypalobjects.com
style-src https://www.paypal.com;
frame-src accounts.google.com https://www.paypal.com;
to our Security Content headers.
However, even with the Security Content headers removed the Mac is not able to access the PayPal files.
We have reproduced the orders in Chrome and Edge on PC and there is no problem.
Please help.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
@PharosAtholl - Can you post a link to your site and we'll take a look at this ASAP.
Haven't Found your Answer?
It happens. Hit the "Login to Ask the community" button to create a question for the PayPal community.
- Content Security Policy - Directives to enable PayPal checkout in PayPal Payments Standard
- Has PayPal updated their standard website payments button? (Please note the date on my post) in PayPal Payments Standard
- Shopping Cart ERROR in PayPal Payments Standard
- Problem with paypal plus / content security policy, script is blocked in PayPal Payments Standard
- Refused to load the script because it violates the following Content Security Policy directive in Sandbox Environment