Merge pull request #2327 from DFE-Digital/csp-suspend

Temporarily stop reporting CSP violations
DFE-Digital · Nov 11, 2020 · fe687c2 · fe687c2
2 parents c527d94 + c89f713
commit fe687c2
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/config/initializers/content_security_policy.rb b/config/initializers/content_security_policy.rb
@@ -44,7 +44,10 @@
                      "https://fonts.googleapis.com" # through Google Maps
 
   # Specify URI for violation reports
-  policy.report_uri "/errors/csp_violation"
+  # TODO: Temporarily commented out until bug in `rollbar` gem is fixed which is causing two violations per pageview
+  #       and making us go over our Rollbar quota
+  #       https://github.com/rollbar/rollbar-gem/pull/1010
+  # policy.report_uri "/errors/csp_violation"
 end
 
 # Enable automatic nonce generation for <script> tags