Skip to main content

PayPal Community

  • Dashboard
  • Send and Request
  • Wallet
  • Business
  • Help
Log in

Le Forum de la communauté n’est pas disponible pour les nouveaux messages ou les réponses; les articles précédents restent disponibles pour vérification. Afin de connaître les options d’assistance complètes, rendez-vous sur PayPal.com/HelpCenter

Si vous souhaitez signaler du contenu illégal et contraire au Règlement sur les services numériques de l’Union Européenne (DSA), veuillez cliquer ici.

since ‎May-15-2023
Country: Spain
Type: Personal
OldLeakeyDJ
OldLeakeyDJ Contributor
Contributor
2
Posts
0
Kudos
0
Solutions
The Return
Ice Breaker
Active
View all
Latest Contributions by OldLeakeyDJ
  • Topics OldLeakeyDJ has Participated In
  • Latest Contributions by OldLeakeyDJ

Re: Content Security Policy - Directives to enable...

by OldLeakeyDJ Contributor in PayPal Payments Standard
‎May-16-2023 03:59 AM
‎May-16-2023 03:59 AM
Thank you for your reply sir, I'm grateful for any help I can get to solve this situation. One of your suggestions to go to Wallet doesn't exist anymore, but I got confirmation on my bank and cards and my Busiiness account is AOK. I have made a test transaction many times, yes, it works for me, but I guess my details are saved? But it's a great way of saving money! I have even tried different programs to run my site ie: Wordpress, OpenCart etc., BUT they all use the same gateway and that's where my problem lies for my customers - the well know phrase - Things don't seem to be working . . . . I take it that there's no PayPal page that lists the directives? I'm sure you'd have pointed it out straight away. As I told you in my previous message, I've been sitting here for weeks trying to get zero CSP blockings, but it seems that I cure one and another one comes up, it tries the patience of Jobe. Yes, I've opened tickets, waited days for a reply, only to get a reply linking to one of the many pages I've already been to, so I'm reluctant to do that anymore as nobody at PayPal seems to know the CSP directives to put on my server to make the PayPal gateway clear for a buyer? Currently this one of the 4 blockages at Checkout: Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src"). I don't have 'script-src-eval', the directive is a no no, so now I have today's problem solving project - and so it goes on . . .     ... View more

Content Security Policy - Directives to enable Pay...

by OldLeakeyDJ Contributor in PayPal Payments Standard
‎May-15-2023 08:01 AM
‎May-15-2023 08:01 AM
For what seems an absolute age I've been trying to get my checkout working to enable my customers to have a stress-free payment. Everything is fine until the last hurdle, the dreaded checkout/payment page, it loads, the customer fills in his/her details, then they get: 'sorry, things aren't working at the moment, please try later'. The never used to happen, I've been with PayPal for well over a decade, it used to be reliable. I have been compiling a content security policy, it's an .htaccess header that lives in the root directory of my Apache server. I tried (unsuccessfully) to use the meta tag version in the 197 pages <head> section, but it was a mega fail. The whole reason for the Policy is to prevent fraud which I understand, so to my mind, there should be a special page dedicated to giving the directives: script-src style-src 'self' 'nonce' etc to enable PayPal to serve it's purpose, but, having spent entire days & evenings searching the internet and guessing, trying to find the correct ones, I have drawn a blank. I now have so many urls in my CSP .htaccess it looks ridiculous, but it still shows so many errors (currently there's 7 red blockages and 28 warnings). I use Chrome Developer & Firefox tools, I check the Policy on every alteration with https://cspvalidator.org/ and https://csp-evaluator.withgoogle.com/ I avoid using 'unsafe-eval' and if I use script-src-elem my site closes down (but script-src-elem falls back to script-src anyway - apparently) There are so may questions from merchants & developers about this topic, some go back 5 years or more and they *still* don't have any answers. I'll give you an example: data blocked font-src hermes:0 https://qncdn.aoscdn.com/local/reccloud.cn/font/online-screen-recorder/digital-display.woff2 blocked font-src hermes:0 https://qncdn.aoscdn.com/local/reccloud.cn/font/online-screen-recorder/digital_display.woff2 blocked font-src these are the main culprits, there are others, but these persist, even though they're in the font-src directive list, they're still blocked. As far as I can find out, 'hermes' is a delivery company, I don't even need that anyway as mine is all digital download. All my other scripts, images, buttons, css work as they should, I've carefully picked up on each one and whitelisted it. Ms Clarity, PiwikPro, Fetchapp, Translate etc ALL give you the correct directives and where they should be placed - easy peasy, but not our multi-million PayPal company, they like to see us sweat. If I go to the Help pages there's plenty of cries for help, but no answers. The best I have seen is a load of us stabbing away in the dark in StackOverflow and the likes, all comparing notes and trying each other's results. PayPal's techie team (after a week's wait) just send you to pages that I've already seen, that's not the way it's supposed to be - is it? There doesn't seem to be a CSP specialist who can give results, I''ve watched loads of YouTube videos, I have paid 2 'developers' so far that gave me their word they could solve this, but both gave up saying that it must be PayPal and therefore out of their hands. Sorry to rant on, but this is now starting to affect my health and my moods, but I refuse to give up, but now I'm in a cul-de-sac and I'm asking for help. Thank you for reading. SS   ... View more
Labels:
  • Labels:
  • PayPal HTML Buttons
Paypal Logo
  • Help
  • Contact Us
  • Security
  • Fees
  • © 1999-2025 PayPal, Inc. All rights reserved.
  • Privacy
  • Legal
  • Cookies
  • Policy Updates

The money in your balance is eligible for pass-through FDIC insurance.

The PayPal Cash Mastercard is issued by The Bancorp Bank pursuant to a license by Mastercard International Incorporated. The Bancorp Bank; Member FDIC.

Powered by Khoros