Activities of "andmattia"

I tried implementing it as per your code, but I still get the same error. Could you show me how the clientId is configured: 'Ticket9991_App'?

Hi,

Could you show me how the environment and the Angular client are configured?

Thanks

With the proposal provided it still doesn't work

Ok, now it works as expected.

1. I remove UseAbpSecurityHeaders from all projects
2. In SignalR, I check the scope and headers
3. In Nginx,x ,where host the Angular app on an internal machine, I remove all headers for normal connections
4. In Nginx, I removed CSP
5. I leave the header only for getEnv for JSON

I've removed only from SignalR service UseAbpSecurityHeaders I need to remove from all microservices? alse gw and auth?

I send by email because when I try to send data on this module I get en error

Ok

I try to remove UseAbpSecurityHeaders but it still not working

I send data via email I also add this to NGINX

proxy_hide_header X-Content-Type-Options;
        proxy_hide_header X-XSS-Protection;
        proxy_hide_header X-Frame-Options;
        proxy_hide_header Referrer-Policy;
        proxy_hide_header Content-Security-Policy;

With this I'm able to remove duplicated header

I see that in response header I've a lot of duplicated tag example

content-security-policy
default-src 'self' http: https: data: blob: 'unsafe-inline'
content-security-policy
default-src 'self'; connect-src 'self' wss://signalr.***.com https://signalr.**.com ws://signalr.***.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; font-src 'self' data:; img-src 'self' data: https:;

content-type

This issue happen also in 9.x on nginx but not in IIS