
Creator
2022-11-01
02:18 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Not able to apply Content Security Policy on Qliksense Enterprise version
Hi,
We are trying to apply Content security policy on Qliksense Enterprise version for our headers:
QMC>>Virtual Proxies>>Advanced>> Additional Response headers
We tried all the below syntax for Content security policy:
Content-Security-Policy: default-src 'self'; img-src *;
Content-Security-Policy:
default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self';base-uri 'self';form-action 'self'
But when we apply the above syntax for CSP, Qliksense login page doesn't load properly and the subsequent pages for dashboards turns blank.
Kindly suggest how can we implement CSP in Qliksense Enterprise version?.
Thanks in Advance.
Regards,
Rohit Gharat
Labels (6)
Labels
- Subscribe by Topic:
-
Administration
-
Client Managed
-
General Question
-
Governance
-
Security
-
Security & Governance
1,566 Views
1 Solution
Accepted Solutions

Support
2022-11-10
03:30 PM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
1,481 Views
2 Replies

Support
2022-11-10
03:30 PM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
@_rohitgharat did you already review this KB: https://community.qlik.com/t5/Official-Support-Articles/How-to-determine-string-policy-for-Content-S...
1,482 Views

Partner - Creator
2025-01-02
05:49 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Community,
In Qlik sense enterprise, according to VAPT report there are some missing security headers which needs to be implemented. We are facing issue while adding the below security header in the virtual proxy.
--> Content-Security-Policy: default-src 'self'
After implementing it we are unable to access qlik getting black/grey screen.
Articles followed:
How to determine string policy for Content Securit... - Qlik Community - 1715491
453 Views
