ivanpabz | Stripe Developers | Page 1

fringe minnowBOT May 30, 2023, 3:54 AM

#

neat sapphire May 30, 2023, 3:54 AM

#

hello! what does testing it on an external Stripe account mean - can you elaborate?

fringe minnowBOT May 30, 2023, 3:57 AM

#

errant sandal May 30, 2023, 4:14 AM

#

So I have these 2 stripe accounts. One is the main account where I uploaded it and the other I used to test it as if someone else is testing it. For now, since the app is not published, the only way to test externally is to have it via the invite link https://prnt.sc/GlhVag7qA7bw. That's how I test it externally. But the problem is that it throws the console error about Content-Security-Policy which is really weird as I already implemented and verified that it contains the needed response header https://prnt.sc/n4fgAASo1Qof.

Lightshot

Screenshot

Captured with Lightshot

neon jungle May 30, 2023, 4:14 AM

#

Hi @errant sandal I'm taking over this thread

errant sandal May 30, 2023, 4:15 AM

#

okay 🙂

neon jungle May 30, 2023, 4:16 AM

#

The error says refused to connect to localhost, are you still in development?

errant sandal May 30, 2023, 4:22 AM

#

Actually, I've done all the needed changes in the code. I've tried to use a live URL but the errors are still the same.

neon jungle May 30, 2023, 4:24 AM

#

You might want to check your code and see if it's still using localhost.

errant sandal May 30, 2023, 4:26 AM

#

Here's a screenshot using live url https://prnt.sc/P7usOibI3l5T

Lightshot

Screenshot

Captured with Lightshot

#

still the same error

neon jungle May 30, 2023, 4:27 AM

#

https://stripe.com/docs/stripe-apps/reference/app-manifest#csprequest did you set the CSP in your app manifest?

App manifest reference

Learn about the app manifest, an index of all fields, types, and descriptions for your app manifest file.

errant sandal May 30, 2023, 4:30 AM

#

I see. This is what I'm missing. I set the CSP on the backend response headers but not on the stripe app UI

#ivanpabz