I am running gitlab with apache web server as a proxy on debian. This was running fine for some time.
One day, after I didn’t use the web interface for some time, I found the login screen with missing icons and probably no CSS (as far as a non-web-dev could tell)
I started to google and found various hints that lead to the following actions and observations:
- This happens on both Firefox and Chrome
- I can fix this, by disabling CSP (security.csp.enable = false) in the browser
- Firefox Shift-F5 Konsole shows 4 lines with “Content Security Policy;; the page’s settings blocked the loading of a resource at inline (“default-src”).”
Then another line with “data:image/gif;base64,R0lGODlhAQABAAAAAC…” instead of “inline”
Finally an:
Uncaught ReferenceError: gon is not defined
zf8v webpack.js:10
Webpack 9
webpack.js:10:4
I tried updating to the latest version. I am now at 14.7, but that didn’t make a change.
I am happy get a fix for this and I would provide any information, needed.
But I would also like to understand what is really happening. I roughly understand what CSP is, but I don’t believe I am supposed to hack gitlabs code to fix this. So, what can it be?
Thanks for helping